Workers  Strike  Back 

Is  No  Time  to  Skimp  on  Security 


ALSO  INSIDE 


Peer  Perspective.  IT  Leadership.  Business  Results 

COMPUTERWORLD.COM  I  AUGUST  22,  2011 


Backup  &  Recovery  Archive  Virtual  Server  Protection  Information  Governance  Deduplication  Disaster  Recovery 


•*>1999  *01:1  Systems,  trie,  All  rights  reservod.  CommVautl.  the  "CV"  logo.  Solving  Forward,  Sirnpana,  and  AchieveOnonons  arc  trademarks  or  registered 

Sysrems.  Int.  AH  specifications  are  eubjet.t  to  change  without  notice. 


Switch  to  single-platform  Simpana®  software  for  truly 
modern  data  and  information  management. 

Year  after  year,  some  companies  stick  with  legacy  data  protection  software 
not  designed  to  handle  today's  IT  realities.  The  result?  Business  at  risk, 
frustrated  users,  out-of-control  costs,  and  compromised  business  agility.  In  a 
word,  insanity. 

With  its  revolutionary  single-platform  architecture,  Simpana  software  enables 
you  to  solve  these  problems  right  now  and  far  into  the  future.  It  will  lower 
operational,  labor,  and  infrastructure  costs,  streamline  integration  of  new 
technologies  like  virtualization  and  cloud  computing,  and  smooth  adaptation  to 
challenges  like  data  center  consolidation  and  eDiscovery  requirements. 

The  result?  Up  to  50%  reduction  in  storage-related  costs,  and  a  far  simpler, 
saner  way  to  manage,  access,  and  recover  business  information.  In  a  word, 
oneness. 

To  learn  how  you  can  do  far  more  with  less  and  add  real  value  to  your  end 
users  and  your  business  with  Simpana  software,  visit  AchieveOneness.com 
or  call  888-31 1-0365. 


commvault 

solving  forward* 


neness 


IBM  BladeCenter®  S 
and  HS22  Express 

with  storage  and  networking  from 


<knnn  nn  per  month 
^U^y.  for  60  months1 


0 $  0 0 0 

• 0 0 # 0 0 

0  0  0  # 


0 


••0 . © 


f 

0 . f 

i 


Say  hello  to  your  entire  server  room. 

Imagine  if  you  could  consolidate  servers,  storage  and  networking  I/O  into  one  simple  package.  Just  think 
what  would  happen  to  your  IT  operating  costs.  That’s  exactly  what  many  midsize  businesses  are  doing. 
They’re  converging  their  IT  infrastructure  on  IBM  BladeCenter  S  and  HS22  servers  featuring  Intel®  Xeon® 
processors.  Through  virtualization,  they’re  reducing  servers  by  up  to  85%  and  cutting  energy  and  facilities 
costs  by  up  to  96%,  all  while  actually  improving  performance.2  They’re  enjoying  superior  availability  with 
features  like  redundant  power  and  I/O.  And  they’re  deploying  the  integrated  SAN  capability  for  up  to  $4,900 
less  than  competitive  offerings.3 


Take  10  minutes  to  see  for  yourself. 

Learn  how  you  could  achieve  up  to  a  3-month  ROI  on  your  migration  with 
our  System  Consolidation  Evaluation  Tool  at  ibm.com/systems/consolidate. 
To  connect  with  the  right  IBM  Business  Partner,  call  877-IBM-ACCESS. 


'60  month  FMV  lease  tram  IBM  Global  Financing,  test  credit'  busmess  customer.  Prices  are  current  as  of  5/20/11;  subject  to  change  without  notice; 
based  on  manufacturers  suggested  retail  price;  dealer  prices  may  vary.  Financing  provided  through  IBM  Credit  LLC  in  the  United  States  and  other  IBM 
subsidiaries  and  drvrs.ons  worldwide  to  quaiited  commercial  and  government  customers.  Minimum  transaction  size:  $5,000;  rates  based  on 
rwortmness.  terms,  offering  and  equ* *pment  type  and  options,  and  may  vary  by  country.  Other  restrictions  may  apply.  Rates  and  offerings  are  subject 
io  change  extension  or  withdraws’  without  notice  Please  contact  your  IBM  Authorized  Business  Partner  or  IBM  representative  for  more  information 
•Sc  ■  cs  tor  me  claims  can  be  found  at  ww  wibmconvsystems/consolidatft  S4  900  cost  savings  vs.  Hewlett-Packard's  blade  enclosure  and  servers  was 
...  rted  js-ng  puttie  sources  as  or  May  2011  terns  compared  were  IBM  BladeCenter  S  chassis  with  SAN  and  six  IBM  HS22  servers  vs.  Hewlett- 

•  •  *-»'•)  s  1  '00  blade  enoosire  with  SAN  and  >x  81  460  G7  set  re's.  IBM  the  IBM  logo,  itmcom  and  BladeCenter  are  trademarks  of  International 
Bustr*  ■  Machines  Corp  registered  n  many  ,iy  ■  dictions  wrvWv.'de.  A  curronl  list  ot  IBM  trademarks  is  available  on  the  Web  at  www.ibm.com/legal/ 
■-cytraoesm ;  Intel,  the  Intel  ago  Xeon  and  Xeon  lns.dt  are  trademarks  or  registered  trademarks  ot  Intel  Corporation  in  the  United  States  and  other 
>  awes.  Ai  other  products  may  be  trademarks  or  registered  trademarks  ot  their  respective  companies.  ©  International  Business  Machines  Corporation 
AH  nghrs  reserved. 


Powerful. 

Intelligent. 

L  ^  J 


08.22.2011  [  VOL.  45,  NO.  15  $5/C0PY  ] 


COHPUTEftWORLD 


% 

k- 


P.O.  Box  9171 
492  Old  Connecticut  Path 
Framingham.  MA  01701-9171 
(508)  879-0700 

Computerworld.com 

EDITORIAL 

Editor  in  Chief 

Scot  Finnie 

Executive  Editors 

Mitch  Betts,  Julia  King  (events) 

Managing  Editors 

Sharon  Machlis  (online), 

Ken  Mingis  (news). 

Bob  Rawson  (production) 

Director  of  Blogs 

Joyce  Carpenter 

Art  Director 

April  Montgomery 

Technologies  Editor 

Johanna  Ambrosio 

Features  Editors 

Valerie  Potter,  Ellen  Fanning  (special 
reports),  Barbara  Krasnoff  (reviews) 

News  Editors 

Mike  Bucken,  Marian  Prokop 

Senior  Editor 

Mike  Barton 

National  Correspondents 

Julia  King,  Robert  L.  Mitchell 

Reporters 

Sharon  Gaudin,  Matt  Hamblen, 
Gregg  Keizer,  Lucas  Mearian,  Patrick 
Thibodeau,  Jaikumar  Vijayan 

Editorial  Project  Manager 

Mari  Keefe 

Senior  Associate  Online  Editor 

Ken  Gagne 

Office  Manager 

Linda  Gorgone 

Contributing  Editors 

Jamie  Eckle,  Preston  Gralla, 

Tracy  Mayor 


CONTACTS 

Phone  numbers,  email  addresses 
and  reporters’  beats  are  available 
online  at  Computerworld.com 
(see  Contacts  link  at  the  bottom 
of  the  home  page). 

Letters  to  the  Editor 

Send  to  letters@computerwor!d. 
com.  Include  an  address  and  phone 
number  for  immediate  verification. 
Letters  will  be  edited  for  brevity 
and  clarity. 

News  tips 

newstipsi3icomputerworld.com 

Subscriptions  and  back  issues 

(888)  559-7327.  cw@omeda.com 

Reprints/permissions 

The  YGS  Group.  (800)  290-5460, 
ext.  100,  computerworld® 
theygsgroup.com 


THIS  ISSUE 


COVER  STORY 

Big  Business  Takes  a 
(Small)  Bite  of  the  Apple 

12  Apple  products  are  making  their  way  into  corporate  America, 
but  the  numbers  are  still  small,  as  Apple  remains  mostly  focused  on  consumers. 


The  Mobile  App 
Gold  Rush 


18  Demand  for  mobile  apps 
is  high,  but  developers 
are  in  short  supply. 


The  Race  to  Cloud 
Standards  Gets  Crowded 

24  Multiple  groups  have  sprung  up  to 
develop  cloud  standards.  Will  that  diversity 
lead  to  success  or  fragmentation? 


HEADS  UP  I  4  Wireless 
sensors  could  make  bridges 
safer.  I  A  health  insurer 
encrypts  all  of  its  stored  data.  I 
5  Hadoop  helps  manage 
unstructured  data.  I  HTML5 
may  have  security  gaps,  says 
the  EU  security  agency. 

NEWS  ANALYSIS  |  6  Laid- 


off  IT  pros  speak  out 

against  Molina  Healthcare.  I 
7  Google’s  Motorola  Mobility 

purchase  could  prove  risky. 

OPINIONS  |  11  Thornton 

May  thinks  IT  needs  to  focus  on 
more  than  efficiency.  I  27  Bart 
Perkins  says  training  is  a  game 
at  some  companies.  I  32  This 


is  no  time  to  skimp  on  security, 
warns  Scot  Finnie. 

DEPARTMENTS 
8  The  Grill:  Mining 
industry  CIO  Marco 
Orellana  I  26  Security 
Manager’s  Journal:  Keeping 
the  DMZ  safe.  I  28  Career 
watch  I  31  Shark  Tank 


lllllllllllllill  FOR  BREAKING  NEWS,  VISIT  COMPUTERWORLD.COM  1 1 1 1 1 1 II  It  1 1 1 1 1 1 


GETTY  IMAGES  /  JASON  SMITH 


FUTURE  WATCH 

Sensors  Could  Avert 

UNIVERSITY  OF  MARYLAND 

researcher  has  developed  inexpen¬ 
sive  wireless  sensors  that  could 
avert  the  kind  of  bridge  collapse 
that  killed  13  and  injured  145  along  I-35W  in 
Minneapolis  four  years  ago. 

“One  of  every  four  U.S.  highway  bridges 
has  known  structural  problems  or  exceeded 
its  intended  life  span.  Most  only  get  in¬ 
spected  once  every  one  or  two  years.  That’s 
a  bad  mix,”  Mehdi  Kalantari,  an  electrical 
engineering  researcher  at  the  university,  said 
in  a  statement  late  last  month. 

Kalantari’s  tiny  wireless  sensors  monitor 
a  bridge’s  structural  health,  such  as  strain, 
vibration,  flexibility  and  cracking.  The 
sensors  transmit  minute-by-minute  data  to  a 
central  computer  that  analyzes  the  data  and 
instantly  warns  officials  of  possible  trouble. 


Bridge  Disasters 

The  professor  founded  a  start-up,  Resensys 
LLC,  to  ramp  up  production  of  the  devices, 
which  is  slated  to  begin  in  September. 

The  sensors,  which  cost  about  $20  each, 
are  rugged  and  could  last  more  than  a 
decade,  Kalantari  said.  An  average-size 
highway  bridge  would  need  about 
500  sensors,  for  a  total  cost  of 
about  $10,000. 

Newer  “smart  bridges,”  such  as 
the  I-35W  replacement  in  Minne¬ 
apolis,  have  wired  networks  of  sensors.  But 
Kalantari  said  the  cost  of  wired  systems  is 
too  high  for  use  on  older  spans. 

“A  wired  network  will  cost  at  least  100 
times  more  than  a  wireless  alternative,  and 
that’s  simply  unaffordable  given  the  strain  on 
local,  state  and  federal  budgets,”  he  said. 

-  Mitch  Betts 


jam  DATA  PROTECTION 

Health  Insurer 
Encrypts  All 
Stored  Data 

Responding  to  the  theft  of  57 
hard  drives  in  2009,  BlueCross 
BlueShield  of  Tennessee  has  com¬ 
pleted  a  $ 6  million  project  to  en¬ 
crypt  all  of  its  at-rest  data. 

The  company  announced  late 
last  month  that  it  spent  more  than 
5,000  man-hours  on  the  encryption 
effort,  which  encompassed  about 
885TB  of  data. 

The  project  included  a  thorough 
inventory  of  stored  data  and  was 
completed  in  just  over  a  year. 

The  insurer  said  it  is  now  encrypt¬ 
ing  all  data  on  1,000  Windows,  AIX, 
SQL,  VMware  and  Xen  server  hard 
drives;  6,000  workstation  hard 
drives  and  removable  media  drives; 
136,000  tape  backup  volumes;  and 
25,000  daily  voice-call  recordings. 

The  57  hard  drives,  which  were 
stolen  from  a  leased  facility  in  Chat¬ 
tanooga,  Tenn.,  contained  record¬ 
ings  of  customer  service  telephone 
calls  that  included  varying  degrees 
of  personal  information  on  about 
a  million  of  the  insurer’s  subscrib¬ 
ers.  So  far,  there  is  no  indication  of 
any  misuse  of  personal  data  from 
the  stolen  hard 
drives,  according 
to  the  company. 
“The  lessons 
we  learned  from  the  theft  led  us 
to  go  above  and  beyond  current 
industry  standards,  and  our  team 
has  worked  tirelessly  to  put  new 
safeguards  in  place  and  encrypt 
all  our  at-rest  data,”  said  CIO  Nick 
Coussoule  in  a  statement. 

-  LUCAS  MEARIAN 


COMPUTERWORLD.COM 


COMPUTERWORLD  AUGUST  22.  2011 


www . i kl ossne  r . com 


WC^AN'T  RE<3IN+0 
PE5Cf?IPt  Ho^~fHRILLet> 
we  Ape  4°  fce  WoPKitsie 
With  a  HARPWAPe 

MAWUfA^Ti/pep. 


BUSINESS  INTELLIGENCE 

Hadoop  Works  Alongside  RDBMS 


THE  GROWING  NEED  for  companies 
to  manage  surging  volumes  of 
structured  and  unstructured  data  is 
continuing  to  propel  enterprise  use 
of  open-source  Apache  Hadoop  software. 

But  instead  of  replacing  existing  technolo¬ 
gies,  Hadoop  appears  to  be  working  alongside 
conventional  relational  database  management 
systems  (RDBMS),  according  to  a  Ventana 
Research  report  released  late  last  month. 

Hadoop  is  designed  to  help  companies 
manage  and  process  petabytes  of  data.  The 
technology’s  appeal  lies  in  its  ability  to  break 
up  very  large  data  sets  into  smaller  data  blocks 
that  are  then  distributed  across  a  cluster  of 
commodity  hardware  for  faster  processing. 

Early  adopters,  including  Facebook, 
Amazon,  eBay  and  Yahoo,  use  Hadoop  to 
analyze  petabytes  of  unstructured  data  that 
conventional  RDBMS  setups  couldn’t  handle 
easily.  Ventana’s  report,  based  on  a  survey 
of  more  than  160  companies,  shows  that  a 
growing  number  of  businesses  have  begun 


putting  Hadoop  to  use  for  similar  purposes. 

The  survey  found  that  most  of  those  compa¬ 
nies  are  using  Hadoop  to  collect  and  analyze 
huge  volumes  of  unstructured  and  machine¬ 
generated  information,  such  as  log  and  event 
data,  search-engine  results  and  content  from 
social  media  sites,  said  David  Menninger, 
author  of  the  Ventana  report. 

“In  two-thirds  of  the  cases,  we  found  that 
people  are  using  Hadoop  for  advanced  analyt¬ 
ics  and  for  types  of  analysis  that  they  were  not 
doing  before,”  he  said. 

The  technology  is  much  less  likely  to  be 
used  for  analyzing  conventional  structured 
data  such  as  transaction  data,  customer  in¬ 
formation  and  call  records,  where  traditional 
RDBMS  tools  still  appear  to  have  an  edge, 
Menninger  said. 

Despite  Hadoop’s  early  promise,  the  study 
said,  enterprises  that  use  it  still  face  challeng¬ 
es  related  to  issues  such  as  security,  clustering 
and  a  shortage  of  people  with  Hadoop  skills. 

-  Jaikumar  Vijayan 


U.S.  data  centers 


consume  about 


of  the  nation’s  energy. 
Data  center  energy  use  has 
risen  36%  since  2005,  but 
that’s  less  than  expected. 


S01IRCE:  STUDY  BY  JONATHAN  KOQMEY, 
STANFORD  UNIVERSITY.  AUGUST  20.11 


INTERNET  SECURITY 

European  Group 
Finds  HTML5 
Security  Gaps 

The  European  Union’s  computer 
security  agency  warned  that  the 
draft  HTML5  standard  may  neglect 
important  security  issues. 

The  European  Network  and  Infor¬ 
mation  Security  Agency  (ENISA)  on 
Aug.  1  released  a  61-page  document 
that  cited  51  security  problems  in 
the  draft  HTML5  specifications. 

“It’s  the  first  time  anyone  has 
looked  at  those  specifications  from 
a  security  point  of  view,"  said  Giles 
Hogben,  program  manager  for  se¬ 
cure  services  at  ENISA. 

Some  of  the  security  issues  can 
be  fixed  by  tweaking  the  specifica¬ 
tions,  while  others  are  risks  that 
browser  users  should  be  warned 
about,  Hogben  said. 

ENISA  also  recommended 
“sandboxed,”  or  isolated,  browser 
sessions  to  protect  online  financial 
transactions  in  one  browser  window 
from  being  hijacked  by  malware  in 
another  open  browser  window. 

HTML5  is  curated  by  the  World 
Wide  Web  Consortium,  which  will 
consider  the  suggestions  and  revise 
the  specifications  by  January. 

Application  designers  and  Web 
developers  will  use  the  HTML5 
specifications  for  years  to  come. 

The  HTML4  specifications,  for  ex¬ 
ample,  have  been  in  use  since  1999. 

-  JEREMY  KIRK, 
IDG  NEWS  SERVICE 


COMPUTERWORLD.COM  5 


NEWS  ANALYSIS 


Outsourced  and  Fired, 
IT  Workers  Strike  Back 


Laid-off  IT  pros  list  their  reasons  for  filing  suit  against 
Molina  Healthcare,  its  former  CIO  and  its  outsourcer, 
Cognizant  Technology  Solutions.  By  Patrick  Thibodeau 


N  THE  DAY  THEY  WERE  FIRED  early  last  year,  about  40 
Molina  Healthcare  IT  employees  met  in  a  conference 
room  for  what  they  thought  was  a  planning  session. 

The  gathering  took  place  at  a  time  of  rising  ten¬ 
sions  over  several  issues,  including  the  expanding 
role  of  offshore  IT  contractor  Cognizant  Technology  Solutions. 

The  Molina  workers  voiced  their  concerns  to  then-CIO  Amir 
Desai  after  he  told  them  they  were  all  being  laid  off.  “I  felt  they 
were  expecting  us  to  be  asking  questions  about  COBRA  and  unem¬ 
ployment  and  all  that,”  said  Bonita  Shok,  one  of  the  laid-off  Molina 
employees.  “Instead,  we  were  being  quite  confrontational  about 
why  they  were  laying  us  off  and  keeping  all  these  H-iB  workers.” 

“I  have  never  experienced  a  group  of  employees  who  were  so 
angry,”  said  a  human  resources  manager  who  was  in  the  meeting 
but  asked  not  to  be  identified. 


“They  felt  their  work  was  being  off¬ 
shored,”  said  the  longtime  HR  industry 
veteran,  who  had  been  hired  to  execute 
the  IT  layoffs  at  the  managed  health¬ 
care  provider. 

The  workers  say  their  questions 
weren’t  answered,  so  18  of  them  filed 
suit  in  California  state  court  earlier 
this  year  against  Molina,  its  former 
CIO  and  Cognizant. 

The  plaintiffs  say  they  were  fired 
because  Molina  and  the  outsourcing 
company  sought  to  employ  workers 
“whose  national  origin,  race  and/or 
ethnicity  was  exclusively  Indian.” 

Molina  said  the  lawsuit  is  grounded 
in  “falsehoods  and  malicious  gossip,” 
while  Cognizant  said  the  suit  is  without 
merit  and  vowed  to  “vigorously  contest 
it.”  Former  Molina  CIO  Desai,  through 
attorney  Edward  Raskin,  says  the 
lawsuit  is  itself  guilty  of  “an  unfair 
discriminatory  bias.”  In  fact,  he  noted, 
“some  of  the  employees  who  lost  jobs  at 
Molina  were  ‘of  Indian  descent.’  ” 

While  what  happened  at  Molina 
is  still  in  dispute,  job  displacement 
because  of  offshore  outsourcing  is  a 
fact  of  life  in  today’s  IT  workplace. 

Outsourcing  engagements  often 
start  when  IT  services  firms  bring  in 
workers,  typically  with  H-iB  or  L-i 
visas,  to  learn  the  company’s  processes. 
Then  the  work  moves  overseas. 

Molina  employees  contend  that’s 
what  happened  to  them.  James  Otto, 
an  attorney  representing  the  former 
Molina  employees,  claims  that  about 
200  visa-holding  workers  have  been  brought  into  the  company. 
More  than  a  dozen  of  the  plaintiffs,  who  met  with  Computerworld 
last  month,  said  Molina  was  at  one  time  a  great  place  for  IT  pro¬ 
fessionals.  “There  was  a  feeling  of  camaraderie”  among  Molina 
workers  and  its  few  contractors,  Shok  said. 

Around  2007,  though,  most  of  the  workers’  immediate  IT 
managers  were  fired  or  laid  off  while  the  number  of  contrac¬ 
tors  increased.  The  Molina  employees  said  they  were  asked  to 
train  Cognizant  workers  and  told  that  their  role  would  shift  to  new 
development.  However,  the  workers  said,  the  corporate  culture 
changed  for  the  worse  as  contractors  were  added. 

“There  was  a  point  where  I  felt  we  were  just  being  written  off,” 
said  David  de  Hilster,  one  of  the  laid-off  IT  workers.  In  the  weeks 
leading  up  to  the  layoff,  the  training  process  became  increasingly 
“urgent,”  he  added.  ♦ 


&  COMPUTERWORLD  AUGUST  22.  2011 


FOTOLIA  /  ICETEAIMAGES 


r 

■  '  v  .:-'  ,  ^ 

r  ■  • 

,S8S8i»!8888i«  1 

MOTOROLA 

m 

,ii;  HD  11:27 

://www.google.com/... 


i\  Images 


Places 


Competing  with 
I  w  licensees  is 
incredibly  difficult.  Few 

have  done  it  successfully. 

•  .  v  •  •  •  \ 

AVI  GREENGART,  ANALYST, 
CURRENT  ANALYSIS 


le  s  Mobile  Bet 
Prove  Tricky 


The  success  of  Google’s  $12.5B  deal  to  buy  Motorola 
Mobility  depends  on  the  company’s  ability  to  ease 
concerns  of  carriers  and  device  makers,  say  analysts. 
By  Stephen  Lawson  and  James  Niccolai 


GOOGLE’S  PLAN  to  pay  $12.5  billion  for  Motorola  Mo¬ 
bility  has  mobile  carriers  and  smartphone  and  OS 
makers  scrambling  to  figure  out  how  the  proposed 
deal  will  affect  them,  analysts  say. 

Google  CEO  Larry  Page  said  he  expects  the  deal, 
announced  last  week,  to  “supercharge  the  entire  Android  ecosys¬ 
tem”  and  “better  protect  Android  from  anticompetitive  threats 
from  Microsoft,  Apple  and  other  companies”  by  giving  Google 
ownership  of  Motorola  Mobility’s  24,500  patents. 

Google  said  it  expects  the  deal  to  close  by  early  next  year. 
Motorola  Mobility,  which  employs  about  20,000  people,  was 
spun  out  of  Motorola  Inc.  early  this  year.  The  company  is  split 
into  two  groups:  Mobile  Devices,  which  manufactures  smart¬ 
phones  and  tablet  devices,  and  Home,  which  makes  set-top  boxes 
and  other  IPTV  equipment. 

The  addition  of  Motorola’s  Droid  to  Google’s  product  inventory 
will  likely  create  some  tensions,  at  least  early  on,  among  carri¬ 
ers  that  sell  the  popular  smartphone  and  other  Android-based 
mobile  devices,  according  to  analysts. 

Relying  on  carriers  to  distribute  the  products  of  a  substantial 
hardware  business  will  be  a  new  experience  for  Google,  and 
how  the  company  handles  it  could  determine  whether  the  deal 


is  ultimately  successful,  said  Roger  Entner,  an 
analyst  at  Recon  Analytics. 

With  the  exception  of  the  less  popular  Google- 
branded  Nexus  phones,  the  company  has  mostly 
dealt  with  service  providers  indirectly  through 
an  army  of  third-party  Android  handset  vendors. 

“The  challenge  is  how  they  will  transform 
from  a  partnership  where  they  are  an  equal 
or  a  little  more  than  an  equal  to  a  relationship 
where  they  are  a  little  bit  less  than  an  equal,” 
Entner  said. 

It  won’t  be  easy,  said  Avi  Greengart,  an 
analyst  at  Current  Analysis.  “Competing  with 
licensees  is  incredibly  difficult,”  he  said.  “Few 
have  done  it  successfully.” 

Phil  Marshall,  an  analyst  at  Tolaga  Re¬ 
search,  suggested  that  Google  could  calm 
some  fears  of  carriers  by  creating  a  vertical 
stack  of  hardware  and  software  for  Motorola 
phones  as  a  solid  alternative  to  Apple’s  iPhone. 

“When  the  Apple  guy  shows  up  with  his  tur¬ 
tleneck  collar,  he’s  not  going  to  have  as  much 
leverage  on  the  carrier  if  Google  is  successful, 
with  Motorola,  at  catching  up,”  Marshall  said. 

However,  he  did  note  that  the  move 

.  could  alienate  competing  Android  device 

manufacturers. 

Any  moves  Google  makes  that  seem  to  favor  Motorola  devices 
could  drive  top  handset  makers  like  Samsung  and  HTC  to  consider 
other  operating  systems,  most  likely  Microsoft’s  Windows  Phone. 
“In  some  ways,  the  big  winner  is  Microsoft,”  Greengart  said. 

Meanwhile,  Motorola  Mobility’s  patent  portfolio  should  help 
shield  Google  from  future  legal  challenges  to  Android  technol¬ 
ogy,  though  it  may  be  too  late  to  fend  off  lawsuits  already  under¬ 
way,  legal  experts  said. 

Google  never  put  much  value  in  building  its  own  patent 
portfolio  and  was  caught  offguard  by  the  patent  arms  race  that 
has  come  to  define  the  wireless  industry.  Its  deal  to  buy  Mo¬ 
torola  Mobility  and  its  patents  came  just  a  week  after  it  accused 
Microsoft,  Apple  and  others  of  trying  to  impose  a  “patent  tax”  on 
Android  to  stifle  its  runaway  growth. 

Alexander  Poltorak,  CEO  of  intellectual  property  firm  General 
Patent,  said  the  patents  will  serve  as  a  deterrent  to  companies 
thinking  of  suing  Google  or  its  partners.  “Now  they  will  think 
twice  before  filing  a  complaint,  because  they  can  be  guaranteed 
Google  will  strike  back,”  he  said.  ♦ 

Lawson  and  Niccolai  are  reporters  for  the  IDG  News  Service. 

Mikael  Ricknas  and  Nancy  Gohring  of  the  IDG  News  Service 
and  Gregg  Keizer  contributed  to  this  story. 


REUTERS  /  KEVIN  LAMARQUE 


COMPUTERWORLD.COM  7 


Marco 

Orellana 


This  innovation  leader 
emphasizes  the 
importance  of  change 
management  over 
technology. 


How  do  you  spend  your  spare 
time?  Enjoying  nature,  particularly 

walks  in  the  nearby  Andes 
Mountains,  and  exploring  the  wine 
world  with  visits  to  vineyards. 

Proudest  achievement? 

My  greatest  pride  is  my  family. 
Last  year,  l  celebrated  25  years 
of  marriage.  I've  proudly  seen  my 
children  grow  and  become  adults. 
Our  littlest  son  is  10  years  old  and 
accompanies  us  now  that  the  older 
ones  are  taking  their  own  path. 

What  goal  do  you  hope  to 
achieve  next?  I  hope  to  use  the 
visibility  provided  by  the  MIT  CIO 
Award  to  speed  up  the  digitalization 
process  of  mining,  generating  links 
between  different  (players]  in  the 
industry  to  achieve  a  shared  vision. 


8  C0MPUTERW0RLD  AUGUST  22,  2011 


VERY  YEAR  the  MIT  Sloan  CIO  Symposium  recognizes  IT  leaders  who  pursue 
innovative  uses  of  technology  to  further  business  objectives.  This  year’s  Award  for 
Innovation  Leadership  went  to  Marco  Antonio  Orellana  Silva,  CIO  and  executive 
manager  of  information,  communication  and  automation  technology  at  Codelco. 
Corporacion  Nacional  del  Cobre  de  Chile  (which  translates  to  the  National  Copper  Corpora¬ 
tion  of  Chile)  is  the  world’s  largest  copper  producer.  Orellana,  who  also  was  recognized  as 
CIO  of  the  Year  in  2010  by  the  Chilean  technology  community,  has  focused  on  modernizing 
the  IT  infrastructure  in  his  organization  and  in  the  mining  industry  as  a  whole. 


You’ve  talked  about  how  your  vision  is  “led  30%  by  technology  and  driven  70%  by  the 
organization’s  culture.”  In  our  experience,  when  we  have  a  new  project,  a  new  technology' 
and  important  innovation,  in  general  the  technology  is  not  the  more  important  part.  If  you 

Continued  on  page  10 


ADVERTISEMENT 


■  Organizations  that  evolve  to  a  service  delivery  model  based 
■  not  just  on  infrastructure,  but  also  on  applications,  will 
increase  their  agility  and  flexibility. 


Virtualization  continues  to  gain  momentum  in  many  or¬ 
ganizations  as  IT  leadership  teams  look  for  more  efficient 
and  effective  ways  to  manage  the  data  center  and  deploy 
IT  resources.  Thirty-six  percent  of  IT  managers  respond¬ 
ing  to  a  Computerworld  Market  Pulse  Survey  say  their 
company  has  already  virtualized  half  or  more  of  its  data 
center.  On  average,  IT  departments  have  virtualized  37% 
of  the  data  center  -  a  percentage  expected  to  increase  to 
51%  over  the  next  1-3  years. 


ligence  about  how  applications  are  performing  (cited  by 
37%  of  respondents);  lack  of  automation  of  repetitive 
management  tasks  (27%);  lack  of  an  end-to-end  solution 
across  the  virtualization  environment  (26%);  and  the 
need  to  use  different  management  tools  to  manage 
physical  and  virtual  environments  (26%).  Layering  new 
cloud  services  into  the  mix  -  a  logical  next  step  for  many 
organizations  -  increases  the  management  complexity 
even  further. 


Many  organizations  are  extending  their  virtualization 
strategies  beyond  servers  and  storage  and  into  core 
business  applications.  Over  three-quarters  (76  percent) 
of  respondents  to  the  Market  Pulse  study  indicated  that 
virtualizing  tier-1  applications  (e.g.,  web,  email,  db,  ERP, 
collaboration,  CRM,  custom  apps)  is  important  to  their 
organization.  The  most  frequent  tier-1  applications  being 
virtualized  are  web  applications  (49%),  email  (46%)  and 
database  applications  (44%). 

As  virtualization  deployments  increase,  however,  so  do 
the  challenges  of  managing  virtual  environments.  Over 
half  (53%)  of  the  survey  respondents  acknowledged  that 
it  is  extremely  or  moderately  challenging  to  administer 
their  virtual  systems.  The  biggest  barriers:  a  lack  of  intel- 

Top  Virtual  Environment 
Management  Challenges 

Lack  of  intelligence  about  apps 
Lack  of  management  automation 
Lack  of  end-to-end  management 
Need  for  different  physical  and  virtual  tools 
Virtual  machine  management  not  enough 
Managing  heterogeneous  environments 
Complexity  of  multiple  management  tools 

SOURCE :  IDG  Research,  June  201 1 


For  many  organizations,  the  next  major  challenge  is  find¬ 
ing  management  tools  that  not  only  provide  better  views 
into  VM  deployments,  but  also  provide  an  integrated 
view  across  physical,  virtual  and  cloud  environments. 
Virtualization  has  been  a  key  driver  of  IT's  transition  to 
becoming  a  more  nimble,  more  cost-effective  provider  of 
infrastructure  and  services  to  the  business.  But  in  some 
cases,  unchecked  deployments  of  virtual  machines  can 
counter  the  savings  from  server  consolidation  by  driving 
up  software  and  administration  costs.  As  IT  organizations 
continue  their  evolution,  virtualization  is  not  enough. 

To  increase  their  agility  and  flexibility,  organizations  must 
evolve  to  a  service  delivery  model  based  not  just  on 
infrastructure,  but  also  on  applications,  supported  by  an 
ability  to  meter  application  performance  and  service  lev¬ 
els.  This  requires  consolidating  management  functionality 
across  physical  and  virtual  environments,  automating 
IT  processes,  and  pooling  resources  efficiently  across 
owned  and  outsourced  infrastructure.  This  highly  orches¬ 
trated  environment  -  delivering  on  the  promise  of  the 
private  cloud  -  will  enable  IT  organizations  to  significantly 
increase  data  center  efficiencies  while  driving  more  value 
for  the  business. 


To  find  out  more  about  the  results  of  the  Market  Pulse 
survey,  as  well  as  the  emerging  challenges  for  managing 
virtual  environments,  visit  www.computerworld.com/ 
whitepapers/MicrosoftMarketPulse  to  download 

the  free  white  paper  "Beyond  Virtualization:  Integrated 
Management  and  the  Private  Cloud" 


COMPUTERWORLD 

Custom  Solutions  Group 


Microsoft 


MIT  SLOAN  CIO  SYMPOSIUM  /  PHOTOGRAPHER  KENT  REICHERT 


THE  GRILL  !  MARCO  ORELLANA 


MIT  Sloan  CIO  Symposium 
co-chairman  Ray  Chang  (left) 
presents  Marco  Orellana  with  the 
Award  for  Innovation  Leadership. 


U  People  in  IT  need  passion, 

they  need  to  believe  in  the  project. 

Continued  from  page  8 

have  a  good  technology  person,  you  don’t  have  problems; 
you  work  with  companies  and  providers,  and  you  have  the 
capacity  to  manage  [the  technology].  The  real  problem  is 
related  to  the  capacity  of  the  person  to  accept  the  new  way 
of  work.  The  company  and  the  miners  are  very  conserva¬ 
tive;  it’s  difficult  for  them  to  change  the  way  they  work. 


How  do  you  manage  change?  When  we  work  on  a  new 
project  and  it  changes  the  process,  we  first  need  a  new 
vision  for  the  miners.  What  is  the  new  vision,  what 
happens  with  this  project,  and  what  happens  [when  it’s 
complete]?  When  we  start  new  projects,  we  have  a  lot 
of  conversations  with  the  miners  to  explain  the  new 
scenario,  what’s  the  new  situation,  what  happens  with 
your  work,  what  happens  with  your  knowledge.  If  you 
do  this  when  you  start,  the  miners  adopt  the  project. 


have  a  community  working  on  solutions  and  we  develop 
solidarity.  We  are  a  community  for  sharing  knowledge. 

I  understand  that  you’re  extending  technology  into 
the  mines  themselves  and  putting  technology  into  the 
hands  of  the  miners.  How  does  technology  help  the 
miners  do  their  jobs?  It’s  very  important  for  us  today 
to  automate.  In  the  past,  all  miners  worked  inside  the 
mine.  Today,  miners  work  remotely.  We  drive  [equip¬ 
ment]  from  outside  the  mine.  We’re  working  from  the 
city.  And  [when  someone  is  in  the  mine],  now  we  know 
what  miners  are  working  what  part  of  the  mine;  we 
have  miners  connected  100%  to  central  operations. 

We  can  provide  information  in  real  time  to  this  miner 
inside  the  mine.  For  example,  if  we  have  a  problem 
inside  one  area  of  the  mine,  we  have  the  technology 
today  to  provide  all  the  information  on  what  happened. 

What  do  you  see  as  the  key  technologies  that  enable 
you  to  bring  innovation  to  your  company  and  the  mining 
industry  as  a  whole?  For  the  future,  we  are  looking  at 
what  will  happen  with  consolidation  and  the  cloud. 

We  believe  they  can  create  a  new  synergy,  in  particular 
around  the  capacity  of  management  of  different  loca¬ 
tions.  For  the  mining  business  process,  we  are  looking  at 
more  automation  of  traditional  equipment,  like  trucks, 
and  increased  integration.  Another  area  is  robotics. 
Robotics  will  change  how  we  work  in  the  mines. 

What  are  the  challenges  to  bringing  technology  to  the 
mines?  When  you  provide  technology  in  the  office,  you 
have  the  problems  related  to  the  buildings.  But  to  provide 
the  technology  inside  the  mines,  the  physical  condi¬ 
tions  are  very  different.  You  need  technology  operations 
for  people  who  work  in  extreme  physical  conditions. 
Second,  you  need  to  get  technology  with  the  capacity  for 
working  when  we’re  connecting  the  mine  with  the  city. 
We  need  security.  You  need  100%  availability.  You  need 
high  capacity,  for  example,  for  high-resolution  video.  We 
need  high  bandwidth.  And  you  need  high  integration. 
You  have  inside  the  mines,  for  example,  tracks  [with] 
sensors,  and  they  provide  a  lot  of  information.  You  need 
to  capture  that  information  in  real  time,  and  all  the 
technology  inside  the  mine  needs  the  capacity  for  inte¬ 
gration.  The  other  difference  is  the  workers.  We  need  to 
incorporate  technology  for  this  type  of  person;  we  need 
technology  that  is  more  friendly. 


You’ve  been  active  in  forming  a  partnership  between 
industry,  academia  and  the  mining  industry  to  bring 
improvements  to  the  copper  industry.  Why  do  this?  In 

2003,  we  [started  to]  have  conversations  with  the  technol¬ 
ogy  companies,  like  Microsoft,  Oracle,  SAP  and  others. 
These  companies  said  that  mining  [is]  a  very  interesting 
business,  but  other  businesses  have  more  volume,  more 
quantity.  We  created  a  community  to  have  a  strong 
relationship  with  the  technology  industry  and  make  it 
more  attractive  for  the  technology  companies  to  develop 
solutions  for  mining.  We  have  more  velocity  when  we 


Are  there  any  traits  that  specifically  make  a  success¬ 
ful  technology  leader?  A  technology  leader  has  to 
have  the  capacity  to  work  with  a  very  special  worker: 
a  person  in  IT.  People  in  IT  need  passion,  they  need 
to  believe  in  the  project.  And  you  need  the  capacity 
to  change  with  that  technology.  In  my  case,  another 
difference  is  you  need  to  work  in  a  community  that  is 
more  extended  than  the  company  itself. 

—  Interview  by  Computerworld  contributing  writer 
Mary  K.  Pratt  (marykpratt@verizon.net) 


10  COMPUTERWORLD  AUGUST  22.  2011 


Getting  Beyond  Efficiency: 
IT’s  New  Value  Challenge 


Historically, 
IT  has  hitched 
the  wagon  of 
its  reputation 
to  the  star  of 
efficiency,  but 
today  efficiency 
is  just  one  part 
of  the  total 
value  equation. 


Thornton  A.  May 

is  the  author  of 
The  New  Know: 
Innovation  Powered  by 
Analytics  and  executive 
director  of  the  IT 
Leadership  Academy 
at  Florida  State  College 
at  Jacksonville.  You 
can  contact  him  at 
thorntonamay® 
aol.com. 


N  1924,  EDWARD  EYRE  HUNT,  an  aide  to  future  President  Herbert 
Hoover,  pronounced  that  Taylorism  was  “part  of  our  moral  inheri¬ 
tance  ”  “Taylorism”  refers  to  the  discipline  of  scientific  management 
created  by  Frederick  Winslow  Taylor,  an  American  mechanical  engi¬ 


neer  who  sought  to  improve  efficiency  by  analyzing 
and  standardizing  tasks.  Taylor  was  the  world’s  first 
efficiency  expert,  the  original  time-and-motion  man. 

Yet,  even  at  the  zenith  of  Taylor’s  popularity,  not 
everyone  believed  that  efficiency  was  the  one  and 
only  measure  around  which  enterprises  should  be 
managed.  In  The  One  Best  Way:  Frederick  Winslow 
Taylor  and  the  Enigma  of  Efficiency,  author  Robert 
Kanigel  explains:  “To  organized  labor,  he  was  a 
soulless  slave  driver _ To  the  bosses,  he  was  an  ec¬ 

centric  and  a  radical,  raising  the  wages  of  common 
laborers  by  a  third,  paying  college  boys  to  click  stop¬ 
watches.  To  him  and  his  friends,  he  was  a  misunder¬ 
stood  visionary,  possessor  of  the  one  best  way.” 

Jeremy  Rifkin,  in  Time  Wars:  The  Primary  Conflict 
in  Human  History,  argues  that  Taylor  “made  efficien¬ 
cy  the  modus  operandi  of  American  industry  and 
the  cardinal  virtue  of  American  culture.”  Taylor, 
Rifkin  declared,  “probably  had  a  greater  effect  on 
the  private  and  public  lives  of  the  men  and  women 
of  the  20th  century”  than  any  other  person. 

Most  organizations  in  America  today  remain 
rooted  in  a  Tayloristic  celebration  of  efficiency. 
British  futurist  Richard  Scase  believes  that  this 
has  to  change:  “Future  organizations  will  have  to 
abandon  their  traditional  management  structures 
—  operational  processes  based  on  hierarchical 
control  and  the  specialist  division  of  operational 
job  tasks.  These  structures  were  and  are  entirely 
appropriate  for  the  large-scale  production  of 
standardized  products  and  services.  What  is 
demanded  of  employees  in  these  businesses  is  that 
they  carry  out  their  tasks  in  an  entirely  predict¬ 
able  and  routine  fashion. ...  The  creative  employee 
is  a  nuisance;  to  suggest  new  and  different  ways  of 


doing  things  is  often  counterproductive  to  operat¬ 
ing  efficiencies.” 

Historically,  IT  has  hitched  the  wagon  of  its 
reputation  to  the  star  of  efficiency.  IT  was  the 
mechanism  whereby  processes  were  standardized 
and,  when  possible,  automated.  In  today’s  intensi¬ 
fied  environment,  where  everyone  from  every¬ 
where  is  competing  for  everything,  efficiency  is 
just  one  part  of  the  complex  total  value  equation. 

The  battle  between  the  forces  favoring  efficiency 
and  the  factions  advocating  innovation  forms  the 
backdrop  for  modern  value  creation  and  destruc¬ 
tion.  Think  of  the  efficiency  camp  as  tigers  and  the 
innovation  camp  as  chickens.  These  two  species 
do  not  naturally  coexist,  and  when  they  bump  into 
each  other  without  tightly  calibrated  supervision, 
the  result  is  feathers,  fat  tigers  and  no  chickens. 

Apply  Taylorist  work-mapping  disciplines  to  the 
process  of  innovation  and  you’ll  see  that  innova¬ 
tion  is  not  efficient.  (Some  forms  of  innovation  are 
more  efficient  than  others,  but  innovation  is  not  a 
candidate  for  Six  Sigma  precision.)  The  reason  for 
this  is  that  the  world  is  not  deterministic. 

James  March,  one  of  the  most  respected  voices 
on  modern  decision-making,  views  management 
as  periods  of  groping  followed  by  sudden  sharp 
insights  that  lead  to  crystallization  —  a  form  of 
“organized  anarchy.”  March  characterizes  much 
decision-making  as  “collections  of  choices  looking 
for  problems,  issues  and  feelings  looking  for  deci¬ 
sion  situations  in  which  they  may  be  aired,  solu¬ 
tions  looking  for  issues  to  which  they  might  be  an 
answer,  and  decision  makers  looking  for  work.” 

The  future  successful  enterprise  will  be  both 
efficient  and  innovative.  ♦ 


COMPUTERWORLD.COM  11 


COVER  STORY 


Yes,  Apple  products  are  making  their 
way  into  corporate  America. 

But  the  numbers  are  still  relatively 

Small.  BY  ROBERT  L.  MITCHELL 

ON  THE  SURFACE,  USAA  looks  like  a  prime 

example  of  how  Apple  is  making  new  inroads 
into  large  enterprises.  The  financial  services 
company  has  deployed  more  than  500  iPhones 
and  300  iPads,  has  about  200  Macintosh  com¬ 
puters,  and  it’s  considering  bringing  in  more 
Macs  to  displace  some  of  its  Windows  desktops. 


12  COMPUTERWORLD  AUGUST  22,  2011 


MICHAEL  GIBBS 


APPLE  IN  THE  ENTERPRISE 


Big  Growth, 
Small  Numbers 


Apple  saw  255%  GROWTH  in  unit  shipments  of  Mac 
desktops  and  laptops  to  the  enterprise  last  year,  ac¬ 
cording  to  I  DC.  While  that  sounds  like  a  major  uptick,  the 
percentage  is  misleading  because  Apple’s  shipments  to  en¬ 
terprises  suffered  a  steep  decline  in  2009  during  the  reces¬ 
sion  (even  though  Apple’s  total  Mac  business  grew  by  8%  that  year). 


And  while  the  167,000  units  shipped  to  U.5.  enterprises  last  year  repre¬ 
sent  a  record  for  Apple,  that’s  just  2%  of  the  more  than  9  million  personal 
computers  of  all  types  that  were  shipped  to  enterprises  in  2010. 

During  the  recession,  Apple’s  reputation  as  a  premium  brand  -  and 
the  fact  that  it  doesn’t  offer  a  low-end  product  line  -  may  have  worked 
against  it  with  enterprise  customers.  From  2006  to  2009,  shipments  of 
Macs  to  the  enterprise  took  a  nosedive,  dropping  from  105,000  to  47,000 
units.  In  contrast,  overall  Mac  sales  grew  by  double  digits  during  that 
period.  “The  Mac  was  too  expensive  while  the  economy  was  trying  to  get 
back  on  track,”  says  IDC  analyst  David  Daoud. 

-  ROBERT  L.  MITCHELL 


255% 


I 


Annual  Growth  Rates 
of  Mac  Shipments 

■  Total  Mac  shipments  (U.S.) 

■  Enterprise*  shipments  (U.S.) 


SOURCE:  IDC 


34% 


24% 


-29% 


-36% 


Annual  Mac  Shipments  167K 


Mac  Market  Share 
in  the  Enterprise* 

■  Mac  shipments  to 
enterprises  as  a  percent¬ 
age  of  total  enterprise 
PC  shipments  (U.S.) 

SOURCE:  IDC 


*NOTE:  IDC  defines  enterprises  as  organizations 
that  have  more  than  500  employees. 


San  Antonio-based  USAA  has  also  released  a  customer-facing 
app  for  iPhones  and  iPads,  and  it’s  considering  developing  others 
for  internal  use.  “There  seems  to  be  a  simmering  demand  for 
them,  and  some  good  business  cases,”  says  Mike  Pansini,  assis¬ 
tant  vice  president  of  IT  infrastructure  architecture  at  USAA. 

But  as  is  the  case  at  many  large  companies,  USAA’s  relation¬ 
ship  with  Apple  is  more  measured  than  it  might  first  appear. 

The  iPhones  and  iPads  have  been  limited  to  the  executive  man¬ 
agement  group  —  USAA  has  no  plans  at  present  to  expand  their 
use  more  broadly  —  and  its  200  Mac  desktops  and  laptops,  mostly 
used  by  developers,  represent  a  small  fraction  of  USAA’s  inventory 
of  personal  computers.  The  rest  of  its  information  workers  —  some 
23,000  people  —  remain  solidly  on  the  Windows  platform. 

It’s  certainly  true  that  Apple  is  making  inroads  into  large  enter- 
i  rises.  In  a  recent  Computerworld  survey  of  367  IT  managers,  73%  of 
1 1  ie  respondents  said  they’re  providing  or  supporting  Apple  products 
in  some  way.  But  25%  still  aren’t  supporting  even  one  iPhone,  Mac 
r  iPad  (and  2%  didn’t  know  if  they  were).  The  143  largest  enterpris¬ 
es  in  the  survey  —  those  with  more  than  1,000  employees  —  had 
the  same  ratio:  73%  support  an  Apple  product;  27%  don’t. 


Although  many  enterprise  IT  organizations  are  accommodat¬ 
ing  user-owned  or  company-issued  iPads  and  iPhones,  they’re 
providing  carefully  controlled  access  to  a  limited  set  of  corporate 
IT  resources,  such  as  the  Internet  and  corporate  e-mail. 

Apple  is  also  making  headway  with  corporate  desktops  and 
laptops:  55%  of  the  survey  respondents  support  at  least  one  Mac, 
and  60%  support  MacBooks.  But  in  most  of  those  cases,  the  IT 
shops  are  supporting  100  or  fewer  Apple  machines.  And  the  Mac’s 
penetration  into  large  businesses  is  miniscule  when  compared 
with  the  number  of  Windows-based  machines  ordered  each  year. 

Furthermore,  IT  managers  say  Apple  isn’t  always  supportive  of 
their  needs,  and  the  Computerworld  survey  shows  that  many  of 
the  obstacles  Macs  have  always  faced  in  large  organizations  still 
exist,  including  the  following: 

■  Mac  versions  of  enterprise  applications  either  don’t  exist  or 
lag  behind  releases  for  Windows. 

■  There  are  few  tools  for  managing  Macs  on  a  large  scale  and 
integrating  them  into  a  Windows-centric  enterprise. 

■  The  perception  remains  that  Apple  products  are  expensive. 

■  IT  managers  say  that  service  and  support  options  aren’t  up 


14  COMPUTERWORLD  AUGUST  22.  2011 


COVER  STORY 


to  enterprise  standards. 

■  Apple  doesn’t  provide  a  product 
road  map  to  help  IT  managers  make 
plans. 

■  Enterprises  have  limited  opportuni¬ 
ties  to  negotiate  prices  for  Apple  products. 

At  the  same  time,  the  survey  and 
interviews  with  enterprise  IT  execu¬ 
tives  indicate  that  Apple’s  position  has 
improved  in  some  areas: 

■  More  businesses  are  buying  or 
building  platform-agnostic  applications 
that  can  accommodate  Apple  products. 

■  Enterprise-class  management  tools 
for  Apple  products  continue  to  evolve. 

■  Apple’s  prices  are  becoming  more 
competitive. 

■  The  trend  toward  Web-based  enter¬ 
prise  applications  has  made  integrating 
Apple  products  easier. 

■  In  the  tablet  market,  competitors 
arguably  have  yet  to  offer  a  product  that’s 
a  better  value  than  the  iPad. 

Apple  still  doesn’t  play  in  the  low  end 
of  the  desktop  and  laptop  markets,  but 
it’s  much  more  competitive  than  it  once 
was  on  the  types  of  units  enterprises  tend 
to  buy,  says  Laura  DiDio,  an  analyst  at 
market  research  firm  Information  Tech¬ 
nology  Intelligence  Consulting  (ITIC). 

Mac  products,  which  once  sold  for  a  30% 
premium  over  comparable  PCs,  have 
come  down  to  earth.  “Apple  doesn’t  get  a 
lot  of  credit  for  that,”  she  says. 

But  IT  executives  tend  to  see  Apple  as 
a  provider  of  consumer-oriented  devices, 
not  a  full-on  enterprise  partner.  “In  the 
Windows  space,  we’ve  got  a  full-time  Mi¬ 
crosoft  support  team  that  is  very  engaged 
in  what  we  do.  With  Apple,  they  haven’t 
matured  into  that  yet,”  says  USAA’s  Pansini. 

On  the  desktop  side  of  the  business, 
an  iPhone/iPad  “halo  effect”  may  have 
been  partially  responsible  for  a  255% 
increase  in  Mac  desktop  and  MacBook 
sales  to  enterprises  in  2010,  as  reported  by  IDC.  But  that  figure 
is  somewhat  misleading.  Shipments  of  Mac  products  to  large 
businesses  still  represent  less  than  2%  of  the  overall  enterprise 
PC  market  in  the  U.S.,  according  to  IDC  figures.  “Apple’s  market 
share  is  absolutely  insignificant,”  says  IDC  analyst  David  Daoud. 


Nonetheless,  Mac  sales  to  the 
enterprise  are  up  sharply,  relatively 
speaking.  More  than  a  quarter  (27%)  of 
the  Computerworld  survey’s  enterprise 
IT  respondents  who  support  Apple 
products  said  support  for  iOS  devices 
had  either  sparked  interest  in  adopting 
Macs  or  had  resulted  in  greater  adop¬ 
tion  of  Macs.  “I  wouldn’t  say  they’re 
buying  Macs  in  droves,”  says  Gartner 
analyst  Michael  Silver.  “But  more  Macs 
are  being  supported  as  part  of  bring- 
your-own-computer  initiatives.” 

However,  when  it  comes  to  media 
tablets,  Apple’s  iPad  owns  the  category, 
accounting  for  more  than  90%  of  the 
300,000  units  shipped  in  the  U.S.  for 
commercial  use  in  2010.  Increasingly, 
users  are  picking  their  own  smart¬ 
phones  and  tablets  and  are  asking  to  use 
them  for  work.  IDC  expects  the  number 
of  commercial  shipments  of  media 
tablets  to  jump  to  1.3  million  this  year. 
“It’s  become  an  unstoppable  force,”  says 
Silver.  “It’s  gotten  harder  to  say  no.” 

While  most  large  organizations  aren’t 
supporting  large-scale  deployments  of 
Apple  products,  Genentech  is  an  excep¬ 
tion.  The  IT  department  at  the  South 
San  Francisco-based  biotech  company 
supports  more  than  2,500  Macintosh 
computers  —  about  half  of  the  desktop 
population  —  and  some  8,000  iPhones. 
And  it  has  made  the  most  of  user  interest 
in  iPads  and  iPhones,  developing  apps 
for  tasks  ranging  from  CRM  to  purchase 
order  approvals  and  expense  reporting. 

That’s  driven  in  part  by  the  fact  that 
Genentech  allows  users  to  choose  their 
own  desktop  computers.  Even  so,  Macs 
tend  to  be  used  in  groups  that  are  less 
dependent  on  Windows  applications, 
such  as  sales,  marketing  and  research. 
“It’s  more  challenging  to  deploy  the  OS  X 
platform  in  other  areas,”  says  enterprise 
architect  David  Lee,  although  Genentech  does  support  some  Macs 
that  need  access  to  Windows  applications  by  using  virtualization 
software  such  as  Citrix  XenDesktop  or  VMware  Fusion.  That 
software  layer,  however,  adds  complexity  and  cost. 

“Our  No.  1  recommendation  is  to  look  at  the  applications  first,” 


Enterprise 
IT’s  Concerns 
About  Apple 

Which  of  the  following  are  issues 
for  you  when  it  comes  to  Apple 
products  in  the  enterprise? 

46% 


Limited  ability  to 
negotiate  on  Apple 
hardware  and  software  pricing. 


/I  i\Q/  APP*e's  m°bile 
/O  devices  don’t 
support  Flash. 

y|4Q/  Enterprise-class 
“fA  /O  service  and  support 
offerings  from  Apple  are  not  up  to 
our  requirements. 


37% 


Apple  offers  little  or 
no  road  map  as  to  its 
future  product  plans. 


33% 


Apple  doesn’t  pro¬ 
vide  management 
and  security  tools  for  its  products. 


28%  Macs  lags  behind 


Software  for 
Mac 

Windows  versions. 


26% 


Lack  of  a  second 
source  for 
computers  and  parts. 


Base:  243  IT  managers  at  U.S  companies 
that  support  Apple  products  for  busi¬ 
ness  use;  multiple  responses  allowed 

SOURCE:  COMPUTERWORLD  SURVEY, 

JUNE  2011 


fe’ve  got  a  full-time  Microsoft  support  team  that  is  very  engaged  in  what 
re  do.  With  Apple,  they  haven’t  matured  into  that  yet. 

MIKE  PANSINI,  ASSISTANT  VICE  PRESIDENT  OF  IT  INFRASTRUCTURE  ARCHITECTURE,  USAA 


COMPUTERWORLD.COM  15 


COVER  STORY 


Silver  says.  “If  users  need  access  to 
Windows  applications,  they  should 
be  running  a  Windows  machine.” 

Mike  Reed,  an  Apple  solutions 
practice  manager  at  IT  services  pro¬ 
vider  Forsythe  Solutions  Group,  sees 
it  differently,  arguing  that  having 
parallel  applications  isn’t  always  nec¬ 
essary.  For  example,  Microsoft  Vizio 
files  can  be  read  by  OmniGraffle 
on  the  Mac.  “It’s  less  about  the  app 
and  more  about  interacting  with  the 
data,”  he  says. 

Whispering  to  the  Enterprise 

Faced  with  the  need  to  respond  to  a  steady  uptake  of  its  products 
by  large  businesses,  Apple  has  quietly  restructured  its  enterprise 
division,  focusing  more  narrowly  on  “Fortune-level”  companies 
and  pushing  more  of  its  enterprise  business  through  the  reseller 
channel  and  its  own  online  sales  group,  according  to  an  executive 
at  one  of  Apple’s  business  partners,  who  spoke  on  the  condition 
that  he  not  be  identified.  “They  don’t  have  as  large  a  sales  force 
focused  on  the  enterprise  as  they  used  to,”  he  says. 

Unlike  the  way  other  vendors  approach  the  enterprise  market, 
Apple’s  strategy  is  to  pursue  more  of  a  “whisper”  campaign.  When 
contacted  for  this  story,  Apple  declined  to  comment  or  even 
acknowledge  the  existence  of  its  enterprise  program,  let  alone 
explain  the  services  it  provides  to  its 
largest  business  customers. 

Although  Apple  doesn’t  want  to  talk 
about  it,  enterprise  customers  and 
service  providers  say  that  the  company 
does  indeed  have  an  organization  that 
caters  to  the  enterprise  and  that  it 
typically  assigns  a  dedicated  account 
representative,  sends  an  engineer  to  the 
customer  site  for  an  initial  assessment 
and  provides  some  integration  services. 

“Apple  does  a  terrific  job  of  tech 
support  for  its  own  devices  in  a  cor¬ 
porate  setting,  but  integration  and 
interoperability  with  other  platforms  can 
be  problematic,”  DiDio  says.  “They  real¬ 
ized  that  they  had  to  have  an  enterprise 
strategy.”  Last  year,  Apple  created  a 
new  business  partner  certification,  the 
Apple  Authorized  System  Integrator,  and 
anointed  four  companies  —  Forsythe  So¬ 
lutions  Group,  Milestone  Technologies, 

Agilex  and  Unisys  —  to  handle  most  of 
that  integration  and  support  work. 

For  technical  support,  however,  cor¬ 
porate  IT  shops  still  need  an  AppleCare 
Preferred  or  Alliance  agreement.  “They’ll 
fly  an  engineer  out  to  our  business  to  get 
the  lay  of  the  land.  But  they’re  not  stop¬ 
ping  on  your  doorstep  any  time  you  have 
a  problem,”  says  Ben  Greisler,  principal 
at  Kadimac  Corp.,  an  Apple  professional 


services  provider.  Some  enterprise 
customers  work  with  Apple’s  telesales 
group  or  Apple’s  retail  stores. 

“We’re  seeing  an  expansion  of 
business-related  services  across  all 
touch  points,  whether  it’s  service 
or  sales  or  retail,”  says  Reed. 

Taken  together,  he  says,  “it’s  the 
‘enterprization’  of  Apple.” 

Perhaps.  But  Apple’s  enterprise 
strategy  is  still  immature,  IT  execu¬ 
tives  say.  “They’re  most  interested  in 
selling  product  and  not  in  adapting 
how  they  do  business  to  meet  the  needs  of  the  enterprise,”  says  a 
vice  president  of  IT  at  a  Fortune  100  company  that  uses  both  Apple 
mobile  and  desktop  products,  who  declined  to  be  identified. 

Mum's  the  Word 

Apple’s  legendary  secrecy  —  its  unwillingness  to  share  its 
product  road  map,  even  under  nondisclosure  agreements  — 
makes  Andy  Wang’s  job  harder.  Wang  is  an  enterprise  architect 
at  Genentech.  “Part  of  my  job  is  to  plan  12  to  36  months  out. 
When  you  don’t  get  anything  from  Apple,  that  makes  for  chal¬ 
lenging  planning,”  he  says.  IT  executives  regularly  receive  such 
briefings  from  vendors  like  Microsoft  and  Hewlett-Packard. 

“With  HP,  we  know  what’s  coming  out  six  to  12  months  from 
now.  With  Apple,  you  don’t  have  a  clue,”  says  Michael  Kamer, 

manager  of  technology  integration 
services  at  St.  Luke’s  Health  System,  a 
healthcare  provider  in  the  Kansas  City, 
Mo.,  area  that’s  testing  a  system  that 
would  let  doctors  access  clinical  apps 
from  their  own  iPads. 

“We’re  guessing  which  capabilities 
will  be  available  when,”  adds  Greg 
Schwartz,  senior  vice  president  and  CIO 
at  USAA.  After  the  iPad  2  was  released, 
USAA  began  work  on  a  new  version  of 
an  online  banking  app  that  lets  iPad  2 
users  photograph  and  submit  checks  for 
deposit  using  the  built-in  camera.  “We 
didn’t  know  when  the  iPad  2  was  going 
to  be  released.  Otherwise,  we  would 
have  had  it  ready,”  he  says. 

Apple’s  consumer-focused  approach 
to  product  licensing  and  support  also 
creates  headaches.  Although  Genentech 
has  developed  its  own  iPhone  apps  and 
delivers  them  through  an  internal  app 
store,  it  still  must  renew  its  certification 
for  those  applications  with  Apple  every 
year.  “That’s  very  tedious,”  says  enterprise 
architect  David  Lee.  “We  have  a  cordial 
and  collaborative  relationship,  but  enter¬ 
prises  are  treated  more  like  consumers.” 

Apple  also  lacks  a  corporate  account 
model  that  enterprise  customers  can  use 
to  centrally  manage  the  acquisition  of 
software  from  its  App  Store.  Instead,  each 


With  HP,  we  know  what's 
coming  out  six  to  12  months 
from  now.  With  Apple,  you 
don’t  have  a  clue. 

MICHAEL  KAMER,  MANAGER  OF  TECHNOLOGY 
INTEGRATION  SERVICES,  ST.  LUKE’S  HEALTH  SYSTEM 


Bring 
Your  Own 

Which  Apple  products  do  you 
support  through  a  BYOC  (bring- 
your-own-computer)  program? 

fc^87% 

iPhone 

80^ 

ipac* 

|r47°/o 

MacBook 

*28% 

Macintosh 

Base:  185  IT  managers  at  U.S  companies 
that  support  Apple  products  for  busi¬ 
ness  use;  multiple  responses  allowed 

SOURCE:  COUPUTERWORLD  SURVEY. 

JUNE  2011 


16  COMPUTERWORLD  AUGUST  22,  2011 


COVER  STORY 


purchase  is  tied  to  an  iTunes  account, 
which  in  turn  is  tied  to  an  individual 
and  that  persons  email  address,  rather 
than  to  a  role  or  physical  device. 

“The  enterprise  has  fundamental 
issues  here.  You  don’t  want  to  have  an 
individual  account  per  device  for  the 
licensing  and  management  of  apps,” 
says  Mark  White,  CTO  of  Deloitte 
Consulting’s  technology  practice. 

But  for  now,  that’s  exactly  what 
many  businesses  do. 

Other  businesses  have  negoti¬ 
ated  directly  with  software  vendors, 
bypassing  the  iTunes  store.  “It’s  not 
a  generally  solved  problem  yet,” 
says  White  —  for  any  of  the  mobile 
vendors. 

Enterprise-class  security  is 
another  concern.  At  St.  Luke’s,  pro¬ 
tecting  data  on  iOS  devices  is  a  big 
issue.  Kamer  says  the  iPad  doesn’t 
natively  support  the  FIPS  140-2 
encryption  standard,  so  he  has  to 
work  around  that.  “That’s  one  reason 
why  we  don’t  allow  them  on  our 
internal  network,”  he  says. 


Management  Tools: 

A  Big  Obstacle 

Unlike  Microsoft,  Apple  doesn’t  offer 
a  suite  of  management  tools  for  its 
products,  relying  instead  on  third- 
party  vendors  and  integrators  to  pull 
together  a  framework  for  securing 
and  managing  Apple  devices  at  the 
enterprise  level. 

“Many  of  the  Mac-based  tools 
are  built  by  small  or  lesser-known 
third-party  ISVs,  and  many  of  those 
are  smaller,  point-type  solutions, 
which  may  not  scale  in  an  enterprise 
setting,”  says  ITIC  analyst  DiDio. 

DiDio  calls  the  management  tools 
issue  “the  biggest  impediment  to 
deploying  Macs  en  masse  in  the  enterprise.” 

And  she’s  not  the  only  one  who  thinks  so.  “The  tools  for 
managing  a  large  population  of  Macs  are  hard  to  come  by.  That’s 
the  truth,”  says  a  Fortune  100  IT  executive  who  declined  to  be 
named  but  says  he  has  examined  the  options. 

Such  sentiments  are  what  convinced  Mac  software  vendors  to 
form  the  Enterprise  Desktop  Alliance  a  few  years  ago.  “There  are 
good  tools  available  for  integrating  Macs  into  enterprises  stan¬ 
dardized  on  Windows,”  argues  EDA  President  Reid  Lewis.  The 
challenge  is  to  educate  IT  managers  on  what’s  available,  he  says. 

Deloitte’s  White  says  it  isn’t  a  question  of  whether  you  can  in¬ 
tegrate  Macs  but  how  much  work  it  takes  to  get  the  job  done:  “In 
a  large  enterprise,  at  scale,  can  you  get  the  job  done?  Yes.  Can  I 
do  it  without  a  lot  of  additional  skills,  capabilities  and  tools?  No.” 


The  reality  is  that 
comp 

to  have  a  choice.  They’re 
going  to  have  to  work  with 
[Apple’s]  business  model. 

GREG  SCHWARTZ, 

SENIOR  VICE  PRESIDENT  AND  CIO,  USAA 


A  Matter  of  Focus 

From  Apple’s  perspective,  the 
enterprise  is  a  niche  market,  and  a 
very  small  one  at  that.  Shipments  of 
Macs  to  enterprise  customers,  for 
example,  amounted  to  just  3%  of  all 
Mac  sales  in  the  U.S.  last  year,  ac¬ 
cording  to  IDC. 

The  company’s  discontinuation 
of  its  Xserve  server  line  last  year 
further  underscores  the  point  that 
Apple’s  focus  remains  on  its  bread 
and  butter  —  the  consumer  —  and 
that  there  are  limits  as  to  how  far  it’s 
willing  to  go  to  satisfy  the  demands 
of  enterprise  customers. 

“Apple  doesn’t  want  to  change  its 
business  to  accommodate  enterpris¬ 
es,”  says  Silver.  “They  want  to  sell 
to  the  enterprise  with  their  current 
business  model.  And  to  some  extent, 
that’s  working.” 

For  now,  at  least,  it’s  the  en¬ 
terprise,  not  Apple,  that  has  to  bend.  Demand  from  users  of 
iPads  and  iPhones,  and  a  push  to  allow  users  to  bring  their  own 
computers  to  work,  requires  some  level  of  accommodation  by 
IT.  “The  reality  is  that  most  companies  are  not  going  to  have  a 
choice.  They’re  going  to  have  to  work  with  that  business  model,” 
says  USAA’s  Schwartz. 

But  accommodation  has  its  limits.  To  Kamer  at  St.  Luke’s, 

Apple  isn’t  an  enterprise  partner  the  way  that  companies  like 
Microsoft  and  HP  are.  “Apple  is  changing  the  game  on  how  we 
deal  with  them  as  a  vendor  due  to  the  popularity  of  their  devices.” 
But,  he  adds,  “this  is  why  we  do  not  plan  on  purchasing  their 
devices  for  the  enterprise.  Bring-your-own-computer  is  the  only 
way  we  can  see  them  being  integrated.  But  even  this  has  many 
challenges  from  a  management  and  security  standpoint.”  ♦ 


Expect  more  integration  work  with 
Macs,  he  says. 

When  it  comes  to  interoperability 
with  existing  tools  for  managing 
Windows  environments,  the  options 
are  even  more  limited.  The  tools 
are  enterprise-class,  says  Charles 
Edge,  lead  engineer  at  318  Inc., 
an  Apple-authorized  reseller  and 
professional  services  provider.  But 
he  acknowledges  that  “they’re  not  as 
well  integrated  with  tools  for  other 
platforms  as  they  could  be.” 

Many  of  the  same  issues  come 
up  when  trying  to  manage  enter¬ 
prise  apps,  enterprise  app  stores 
and  mobile  data  on  iPhones  and 
iPads,  says  White.  “Those  are  work¬ 
able  today  but  not  a  slam  dunk.  It 
requires  significant  integration  work 
and  control  frameworks.” 


COMPUTERWORLD.COM  17 


APPLICATION  DEVELOPMENT 


THE  MOBILE  APP 


S  DEMAND  SURGES  for  apps  to  run  on  iOS, 
Android  and  whatever  operating  system  will 
power  the  next  wave  of  smart  mobile  devices, 
companies  are  facing  a  dearth  of  mobile 
development  talent.  For  IT  professionals  with 
programming  skills,  that  gap  represents  a  fresh 
opportunity  to  embark  on  a  career  makeover. 

Continued  on  page  20 


r$  COMPUTER  WORLD  AUGUST  22,  2011 


FOTOLIA  /  MICKEY  HOO 


COMFUTERWORLD 


From  the  editors  of  CIO,  Computerworld,  CSO,  lnfoWorld&  Network  World 


Your  Strategic  Guide  to 

Converged 

Infrastructure 

Underutilization  and  complexity  are  the  bane  of  IT  and  convergence  is 
seen  as  one  of  the  primary  ways  to  fight  back.  This  Strategic  Guide  takes 
a  deep  look  into  how  these  efforts  are  paying  off,  where  we  stand  on  the 
efforts,  lessons  learned,  and  where  to  go  from  here, 

We  know  you  enjoy  and  trust  the  information  you  get  from  CIO, 
Computerworld,  CSO,  InfoWorld and  Network  World.  Now  look  for  the 
digital  magazine  -  a  new  targeted  information  resource  that  combines 
these  editorial  forces! 

Delivered  straight  to  your  in-box  or  available  online  at: 

www.computerworld.eom/s/pages/digital_ci 

Debuting  September  6, 2011. 

SPONSORED  BY  IT  agility.  Your  way. 


■  ■  a  a  aja  a  a  a  a  »*■  a  a  ajja  a  a 

a  a  a  a  a  a 

i  «*■  a  a  »*a  a  a  a"a  a  a  a*a  a  a  **■  a  a  «*m 


ANY  application  development  profes¬ 
sionals  are  likely  to  obsess  over  what 
tools  and  technology  they  should  choose 
to  develop  a  mobile  app.  While  that’s  im¬ 
portant,  “it  is  less  than  half  the  battle,”  says 
a  recent  report  by  Forrester  Research  analyst  Mike  Gualtieri. 

What  you  really  need  is  a  mobile  app  that  people  will 
love  to  use.  “If  users  don’t  love  your  application,  then  they 
will  simply  move  on  to  another  application  that  they  do  love 
-  or  use  no  app  at  all,”  the  report  says.  The  reaction  you’re 
seeking?  “This  app  is  awesome!” 

Gualtieri’s  report  says  that  “lovable  mobile  user  experi¬ 
ences”  must  have  the  following  qualities: 


UTILITY:  A  mobile  app  must  deliver  functions 
that  allow  customers,  employees  or  business 
partners  to  achieve  their  goals  -  using  the 
ingenuity  and  capabilities  of  your  business. 


USABILITY:  Your  mobile  app  must  be 
extremely  easy  to  use. 


DESIRABILITY:  The  experience  of  using  the 
mobile  app  should  produce  positive  emotions. 
“You’d  think  that  useful  and  usable  would  be 
enough  -  but  they  are  not.  Users  also  want  to 
enjoy  their  experience,”  Gualtieri  writes. 


Developers  should  identify  their  target  mobile  users, 
interview  those  users  about  their  needs,  observe  them  “in 
their  natural  habitat,”  design  the  app  and  then  “validate  your 
design  in  a.mobile  context  to  make  certain  your  users  are 
happy  and  that  they  love  your  app,”  the  report  says. 

Well-designed  mobile  apps  help  mobile  users  do  some¬ 
thing  that  furthers  the  organization’s  goals,  the  report  notes. 
For  example,  Liberty  Mutual  Insurance  offers  customers  an 
Apple  iPhone  app  that  streamlines  automobile  accident 
claim  processing. 

The  app  walks  customers  through  the  process  of  collecting 
information  from  the  other  driver,  taking  a  photo  of  the  dam- 
age,  mapping  the  location  via  GPS  and  sending  the  report. 
Liberty  Mutual  benefits  because  it  gets  accurate  information, 
can  quickly  start  processing  the  claim  andean  help  the  cus¬ 
tomer  through  a  stressful  situation. 

-  What’s  to  love  about  a  mobile  app  for  auto  accident  insun 
ance  claims?  “Perhaps  nothing,”  the  report  notes,  “until  you 
are  in  a  fender  bender." 

.  -  MITCH  BETTS 


Continued  from  page  18 

To  put  the  demand  in  perspective,  consider  that  Apple  racked 
up  $1.78  billion  in  app  sales  in  2010,  and  global  mobile  app 
sales  are  forecast  to  hit  $4  billion  this  year,  according  to  IHS,  a 
market  research  firm  in  Englewood,  Colo. 

Who  is  developing  all  of  those  apps?  In  its  recent  “America’s 
Tech  Talent  Crunch”  study,  IT  job  site  Dice.com  found  that  job 
postings  for  Android  developers  soared  302%  in  the  first  quarter 
of  this  year  compared  with  the  first  quarter  of  2010;  postings  for 
iPhone-related  positions  rose  220%  in  the  same  time  frame. 

Elance.com,  a  website  for  freelancers,  reports  comparable 
demand:  In  the  first  quarter  of  2011,  there  were  4,500  mobile 
developer  jobs  posted  on  the  site  —  an  increase  of  101%  over  the 
number  of  similar  job  postings  in  the  same  quarter  last  year. 

The  total  number  of  job  listings  on  the  site  expanded  at  a  rate 
of  52%  in  that  same  period,  indicating  that  mobile  development 
as  a  career  segment  may  be  growing  twice  as  fast  as  the  overall 
job  market,  according  to  Ellen  Pack,  vice  president  of  marketing 
at  Elance.com. 


There  is  more  demand 
than  supply  because  there 
aren’t  enough  great  mobile 
developers  out  there. 

ELLEN  PACK,  VICE  PRESIDENT  OF  MARKETING, 
ELANCE.COM 


It’s  not  just  tech  companies  that  are  on  the  prowl  for  mobile 
development  talent.  All  kinds  of  product  and  service  companies 
are  scrambling  to  come  out  with  apps,  just  as  they  were  working  a 
short  while  ago  to  establish  a  presence  on  social  networking  sites. 

“It’s  become  one  of  the  boxes  you  have  to  check  to  be  a 
successful  brand,”  Pack  says.  And  that  reality  translates  into 
pent-up  demand  for  app  developers.  “It’s  one  of  those  areas 
where  there  is  more  demand  than  supply  because  there  aren’t 
enough  great  mobile  developers  out  there,”  she  says. 

While  there  are  ample  pools  of  Web  and  Java  development 
talent,  professionals  with  expertise  building  native  apps  for 
Apple’s  iPhone  and  iPad,  the  BlackBerry  or  any  of  the  newer 
Android  devices  are  in  short  supply  because  of  the  relative 
newness  of  those  platforms. 

Developers  and  designers  who  fully  understand  the  constraints 
and  the  opportunities  afforded  by  the  smaller  real  estate  and 
touch  interfaces  of  the  smart-device  platform  are  in  high  demand. 

Market  watchers  say  it’s  the  ability  to  grasp  mobile’s  new 
usage  rules  —  not  simply  the  ability  to  master  new  program¬ 
ming  skills  —  that  separates  those  with  an  affinity  for  mobile 
development  from  those  who  just  don’t  get  it. 

“When  you’re  building  Web  applications,  [you]  have  the  whole 


I 

I 


APPLICATION  DEVELOPMENT 


desktop.  There  are  things  you  can  get  away  with  from  a  design 
point  of  view  that  simply  don’t  translate  to  a  mobile  device,”  notes 
Eric  Knipp,  an  analyst  at  Gartner.  “It’s  not  just  about  making 
things  smaller  or  splitting  things  up  into  separate  screens.  Devel¬ 
opers  have  been  trained  to  think  that  more  features  equates  to 
better  applications,  but  on  mobile  devices,  that’s  simply  not  true.” 

Finding  Talent 

All  signs  indicate  that  there  is  a  healthy 
demand  for  mobile  app  developers 
but  that  demand  isn’t  translating  into 
widespread  offers  of  full-time  jobs  on 
corporate  IT  teams  just  yet.  That’s 
because  many  companies  with  lean 
IT  budgets  aren’t  ready  to  commit  to 
hiring  highly  specialized,  and  therefore 
pricey,  mobile  development  talent. 

Some  organizations  are  outsourcing 
mobile  app  projects  to  consulting  firms 
and  boutique  development  shops  until 
they  have  a  more  pronounced  need. 

That’s  Aspen  Skiing  Co.’s  strategy. 

To  date,  the  Colorado  ski  resort  op¬ 
erator  has  come  out  with  a  couple  of 
mobile  apps,  including  a  tool  that  lets 
managers  conduct  ad  hoc  smartphone- 
based  surveys  of  customers  around  the 
resort  and  another  that  gives  customers 
access  to  an  array  of  resort  data,  such 
as  weather  conditions,  lift  status  and 
daily  events. 

Since  Aspen  Skiing  doesn’t  consider 
software  development  a  core  compe¬ 
tency  and  can’t  accommodate  a  large  IT 
staff,  outsourcing  mobile  development 
seemed  like  the  most  efficient  plan  — 
at  least  in  the  short  run. 

“Mobile  is  such  a  rapidly  changing 
environment;  so  much  of  it  is  tied  to 
what  content  management  tool  you  use 
or  what  devices  you  want  to  support,” 
says  Paul  Major,  managing  director 
of  IT  at  Aspen  Skiing.  “Going  outside 
helps  us  keep  pace.” 

Supermedia,  which  provides  market¬ 
ing  and  advertising  services  for  small 
and  midsize  businesses,  also  initially 
thought  outsourcing  would  be  more 
cost-effective  than  in-house  develop¬ 
ment.  But  a  couple  of  years  into  its 
mobile  initiative,  Supermedia  realized 
that  the  discipline  was  far  too  central  to 
its  business  model  to  continue  paying 
outside  consultants  to  develop  apps, 
according  to  Michael  Dunn,  the  com¬ 
pany’s  CIO.  A  little  over  a  year  ago,  the 
firm  decided  to  set  up  an  internal  team 
to  build  regular  updates  and  to  enhance 


its  apps  to  support  the  growing  number  of  mobile  platforms. 

Aware  of  the  shortage  of  skilled  development  talent,  Super¬ 
media  took  a  number  of  steps  to  avoid  being  caught  in  a  crunch. 

First,  it  cross-trained  two  key  internal  Java  developers  on 
mobile  platforms,  and  then  it  seeded  the  rest  of  its  fledgling  team 
with  recent  college  graduates.  “The  market  took  off  so  fast,  and 
there  was  such  a  huge  demand  for  developers.  This  let  us  hire  im¬ 
mediately,  and  it’s  far  more  affordable,” 
Dunn  explains. 

The  seasoned  Java  developers  came 
up  to  speed  pretty  quickly  on  specific 
Android-  and  iOS-related  skills,  thanks 
to  their  sets  of  core  skills,  Dunn  says. 

With  the  new  domain  expertise 
under  their  belts,  the  veteran  develop¬ 
ers  were  then  able  to  mentor  incoming 
college  graduates,  allowing  Supermedia 
to  leverage  its  investment  in  their  train¬ 
ing.  The  new  hires  “have  core  develop¬ 
ment  skills  and  some  knowledge  of 
mobile  app  development  —  maybe  not 
on  a  commercial  scale,  but  they’ve  done 
it  in  an  academic  environment  as  a 
project,”  Dunn  explains. 

Currently,  Supermedia  has  10 
mobile  app  specialists  in  its  150-person 
developer  group,  which  is  part  of  an 
enterprise  IT  staff  of  nearly  300  people. 

The  User  Experience 

The  new  design  requirements  of  mobile 
platforms  represent  a  potentially  more 
difficult  transition:  In  addition  to 
recognizing  that  they  will  be  design¬ 
ing  apps  for  the  smaller  real  estate  of 
smartphone  screens,  developers  have 
to  understand  how  users  interact  with 
their  devices  and  grasp  the  need  to 
deliver  highly  targeted  functionality. 

“The  way  people  interact  with  a 
laptop  or  a  desktop  is  different  than  the 
way  they  interact  with  a  smart  device,” 
says  Hap  Aziz,  director  of  the  Rasmus¬ 
sen  College  School  of  Technology  and 
Design,  which  was  among  the  first  uni¬ 
versities  to  launch  a  curriculum  with 
a  specific  focus  on  mobile  application 
design  and  programming. 

“People  using  a  smart  device  don’t 
think  of  themselves  as  ‘computer 
users,’  therefore  you  can’t  use  the  same 
conventions  you’d  use  in  develop¬ 
ing  desktop  software,”  Aziz  explains. 
“Drop-down  menus  and  elaborate 
help  screens  just  don’t  work  on  a  smart 
device  —  it’s  more  like  working  an 
ATM  machine  at  the  bank.” 

Continued  on  page  23 


SECURITY 

OBILE  applica¬ 
tion  develop¬ 
ment  is  a 
relatively  new 
field,  and  tech¬ 
nologies  for  securing  mobile 
application  code  are  immature, 
according  to  a  recent  Forrester 
Research  report  that  advises  se¬ 
curity  managers  to  get  involved. 

The  report,  by  analyst  Chenxi 
Wang,  says  that  vulnerabilities  in 
mobile  code,  flawed  application 
architecture  or  improper  handling 
of  credentials  can  lead  to  embar¬ 
rassing  data  breaches,  network 
intrusions  or  hacker  attacks. 

For  example,  last  year  research¬ 
ers  found  that  Citigroup's  iPhone 
mobile  banking  app  was  mistaken¬ 
ly  saving  access  codes  and  bank¬ 
ing  data  in  an  unencrypted  file  on 
the  phone.  Citigroup  then  urged 
customers  to  upgrade  the  app  to  a 
version  that  fixed  the  problem. 

-  MITCH  BETTS 


COMPUTERWORLD.COM  21 


WWW. 


.com 


,  Inc  AH  nghis  reset 
United  States  and 


—d.  VER.SiGN.  th«  Verisign  logo.  and  other  trademarks.  service  marks,  and  Verisign  designs  are  registered  or  unregistered  trademarks  of  VeriSign,  Inc,  and  its 

f<ragn  countries.  Ail  other  trademarks  are  property  of  their  respective  owners. 


HOW  DOES  YOUR  BUSINESS  STAY  CONNECTED  BETWEEN  THE  DOTS? 


Is  your  network  vulnerability  keeping  you  up  at  night?  Discover  how  Verisign,  the  Internet  infrastructure  services 
company  trusted  to  run  .com  and  .net  for  more  than  a  decade,  can  help  optimize  and  protect  your  network 
operations.  We  enable  billions  of  online  connections  every  day  through  our  global  infrastructure,  in-depth  threat 
intelligence,  and  elite  team  of  security  and  network  industry  experts.  See  how  that  same  operational  expertise  can 
provide  critical  services  to  keep  your  business  connected  and  available  between  the  dots. 


APPLICATION  DEVELOPMENT 


Continued  from  page  21 

Still,  it  doesn’t  take  a  rocket  scientist  to  make  the  transition  —  just 
someone  with  the  commitment  to  do  what  it  takes  to  learn  new  technolo¬ 
gies  and  master  the  new  conventions.  Going  back  to  school  is  one  option, 
and  in  addition  to  full-time  programs  like  the  one  Rasmussen  offers,  there 
are  countless  undergraduate,  continuing  education  and  certificate  courses 
on  hot  subjects  such  as  HTML5,  object-oriented  programming,  Java,  and 
iOS  and  Android  programming. 

Learning  by  doing  is  the  next  best  approach,  and  one  likely  favored  by  the 
bulk  of  today’s  IT  professionals,  according  to  Nick  Dalton,  owner  of  36omind, 
a  software  development  consultancy  that  specializes  in  mobile  apps. 

Would-be  mobile  app  developers  need  to  immerse  themselves  in  the 
platform  —  and  that  means  swearing  off  the  PC  for  a  while,  he  says. 

They  need  to  make  a  full  commitment  to  doing  as  much  as  possible  in 
the  mobile  environment  to  experience  firsthand  both  the  constraints  and 
the  opportunities.  “On  a  smaller  device  that  doesn’t  have  much  memory 
and  has  a  weaker  processor,  you  have  to  be  more  conscious  of  how  you’re 
programming,”  says  Dalton.  “Those  things  can’t  come  from  theory;  they 
can  only  come  from  experience.” 


Dalton,  a  25-year  IT  veteran,  spent  much  of  his  career  as  an  enterprise 
Java  architect  designing  back-end  systems  and  customer-facing  applica¬ 
tions  at  companies  such  as  Nissan  and  Toyota.  When  the  iPhone  was  first 
released,  Dalton  undertook  a  self-directed  crash  course  to  master  the  iOS 
software  development  kit.  Once  the  Apple  App  Store  was  announced  and 
the  market  for  mobile  app  developers  took  off,  Dalton  left  corporate  IT  and 
started  36omind. 

Today,  36omind  employs  nearly  20  mobile  app  developers  and  has 
moved  away  from  building  simple  novelty  apps  to  working  on  corporate 
initiatives  that  link  both  Apple  iOS  and  Android  apps  to  back-end  enter¬ 
prise  systems.  For  example,  36omind  was  the  development  muscle  behind 
fast-food  chain  Chipotle’s  ordering  app,  which  lets  customers  order  and  pay 
for  meals  on  their  phones. 

With  no  end  in  sight  for  mobile  development  opportunities,  Dalton  says 
this  latest  “gold  rush”  sends  a  clear  message  to  fellow  developers,  system 
architects  and  Web  designers:  “In  today’s  global  outsourcing  economy,  you 
don’t  want  to  be  stuck  with  outdated  skills.” 

And  mobile  app  work  has  an  added  bonus,  he  says.  “If  you’re  coming 
from  a  multimillion-dollar  enterprise  server  project  where  every  decision 
takes  forever,”  Dalton  says,  “working  on  these  small,  self-contained  proj¬ 
ects  [for  mobile  devices]  is  a  lot  of  fun.”  ♦ 

Stackpole,  a  frequent  Computerworld  contributor,  has  reported 
on  business  and  technology  for  more  than  20  years. 


STAY  CONNECTED 
24/7  WITH  VERISIGN 
SERVICES. 


Our  proven  capabilities  of 
managing  and  safeguarding 
.com  and  .net  can  be  the  key 
to  improving  your  network 
performance.  Learn  how  our 
suite  of  Verisign  services  can 
keep  your  business  connected 
between  the  dots  at 
Verisignlnc.com/connect. 


Verisign*  DDoS  Protection 

Use  our  infrastructure  and 
expertise  to  help  keep  your 
sites  connected  during 
distributed  denial-of-service 
(DDoS)  attacks. 


Verisign’  i Defense 
Security  Intelligence 


Get  constant  actionable 
intelligence  and  data  to 
provide  visibility  into  emerging 
threats  and  vulnerabilities. 


Verisign’  Managed  DNS 


Leverage  our  Domain  Name 
System  (DNS)  infrastructure 
to  deliver  greater  accuracy 
and  network  availability. 


VERISIGN 


COMPUTERWORLD.COM  23 


CLOUD  COMPUTING 


standards.  What  is  less  clear  is  whether  multiple  efforts 
will  make  the  standards  push  more  effective  or  result 
in  conflicting  approaches  that  lead  to  a  wreck. 

The  various  cloud  standards  groups  do  share  a  key 
attribute:  They  all  enjoy  business  buy-in.  For  instance, 
Cloud  Standards  Customer  Council  members  include 
Citigroup,  Costco  Wholesale  and  Deere  &  Co. 

The  Open  Data  Center  Alliance,  an  Intel-backed 
standards  organization  formed  last  year,  includes 
BMW,  Deutsche  Bank,  JPMorgan  Chase,  Marriott  In¬ 
ternational,  Shell  and  Disney  Internet  Labs.  Overseas 
companies  with  seats  on  the  alliance’s  steering  com¬ 
mittee  include  China  Life,  a  Beijing-based  insurance 
company,  and  China  Unicom,  a  government-owned 
telecommunications  company. 

Meanwhile,  the  Cloud  Security  Alliance  member¬ 
ship  list  includes  Coca-Cola  and  eBay. 

“Our  intention  is  to  be  extremely  collaborative  with 
all  the  various  organizations  that  spawn  out  there,” 
says  Marvin  Wheeler,  chief  strategy  officer  at  cloud 
vendor  Terremark  and  chairman  of  the  Open  Data 
Center  Alliance. 

Wheeler  says  the  push  for  standards  by  the  multiple 
groups  shouldn’t  be  competitive,  but  complementary. 
The  multiple  efforts,  in  the  end,  may  help  all  the 
groups  achieve  their  respective  goals,  he  says. 


The  Race  to 

Cloud  Standards 

Gets  Crowded 

Are  there  too  many  groups  on  the 
same  track?  by  Patrick  thibodeau 


HE  RISE  OF  CLOUD  COMPUTING  has 

led  to  a  strong  push  from  IT  leaders 
at  many  major  companies  to  develop 
standards  that  address  issues  such  as  se¬ 
curity  and  data  portability  in  the  cloud. 
But  the  early  push  for  standards  is 
beginning  to  resemble  a  NASCAR  race  —  everyone  is 
driving  on  the  same  track  but  sitting  in  different  cars. 

Multiple  organizations  are  in  pursuit  of  the  same 
checkered  flag:  a  set  of  standards  that  will  facilitate 
the  adoption  of  cloud  computing  technologies. 

1  he  latest  organization  to  join  the  growing  list  of 
standards  groups  is  the  IBM-backed  Cloud  Standards 
Customer  Council,  which  announced  its  steering 
committee  last  month. 

It’s  clear  that  the  business  community  wants  cloud 


Clout  With  Vendors 

The  Open  Data  Center  Alliance  is  counting  on  brute 
force  to  change  the  cloud  computing  market.  The 
alliance  says  its  membership  represents  more  than 
$100  billion  in  annual  IT  spending  power,  some  of 
which  will  go  toward  cloud  computing. 

The  alliance  is  developing  “usage  models”  that  IT 
managers  can  employ  when  negotiating  with  cloud 
vendors.  The  usage  models  address  many  of  the 
issues  that  annoy  users  or  keep  them  from  adopting 
cloud  technologies. 

For  example,  one  usage  model  aims  to  fix  problems 
caused  by  the  lack  of  an  agreed-upon  method  for 
creating  and  deactivating  virtual  machines. 

“How  you  start,  stop,  create,  suspend  a  VM  really 
shouldn’t  be  a  selling  point  for  [cloud  vendors],”  says 
Andrew  Feig,  executive  director  of  financial  services 
firm  UBS’s  Technology  Advisory  Group  and  an  alli¬ 
ance  board  member.  “However,  it  does  cause  us  a  lot 
of  pain  to  actually  have  to  do  that  four  different  ways 
for  four  different  vendors.” 

Among  those  involved  in  the  Cloud  Standards  Cus¬ 
tomer  Council  is  North  Carolina  State  University. 

“I  would  be  a  lot  more  worried  if  we  only  had  one 
group  looking  at  this  at  this  point,”  says  Sam  Averitt, 
a  former  IT  director  at  the  university.  He  retired 
last  month  but  plans  to  remain  active  in  cloud  and 
standards  efforts. 

Averitt  says  the  cloud  market  is  so  big  and  diverse 
that  it  needs  different  voices. 

“There  is  going  to  be  a  convergence  process  over  time,” 
says  Averitt,  “and  if  done  well,  it  will  work  out  fine.”  ♦ 


24  COMPUTERWORLD  AUGUST  22.  2011 


GETTY  IMAGES  /  JASON  SMITH 


September  18-20, 2011  Wigwam  Resort,  Phoenix,  Arizona 


Analyzing  the  PRESENT, 
Anticipating  the  FUTURE, 
Optimizing  BUSINESS  VALUE 


Bl  &  Analytics  Perspectives  2011  is  the  premier  conference 
for  Business  Intelligence  &  Analytics. 

This  year’s  speakers  include: 

►  DON  CAMPBELL,  Chief  Technology  Officer,  IBM/Cognos 

►  JOHN  LUCAS,  Director  of  Operations,  Cincinnati  Zoo  & 

Botanical  Garden 

►  MONICA  KLAWITTER,  Senior  Manager,  Consumer 
Insights,  Match.com  North  America 

►  NED  KUMAR,  Senior  Strategic  Marketing  Fellow  and 
SEO  Strategist,  FedEx  Services 

►  DOUG  PORTER,  SVP  &  CIO,  Blue  Cross/Blue  Shield 
Association 

►  JAMES  TAYLOR,  CEO  Decision  Management  Solutions  and 
Faculty  Member,  International  Institute  for  Analytics  (IIA) 

Plus,  you'll  network  and  get  peer  insights  from  IT  Executives  from 
companies  such  as  AAA,  Allstate  Insurance,  American  Express, 

Procter  &  Gamble,  Ticketmaster,  US  Airways,  US  ARMY,  Wells  Fargo, 
and  many  more! 

And  you’ll  have  the  opportunity  to  participate  in  panel  discussions 
on  topics  such  as:  Driving  Business  Change  with  Bl,  Cloud-based 
Bl,  True  Predictive  Analytics,  Mobile  Bl,  Integrating  Big  Data  and 
Bl,  Leveraging  Social  Media  Effectively,  and  much  more... 


r  ' 

SPONSORS  INCLUDE 

UNDERWRITER 


PLATINUM  SPONSORS 

Information 

Builders 

MicroSfrofecvy 

MOBILE  INTELLIGENCE  ^ 

ORACLE* 

GOLD  SPONSORS 

+fJ+  +  a  b  |  e  a  u 

"L  SOFTWARE 

Teradata 


RESEARCH  PARTNERS 

m  me 


www.biperspectives.com/magazine 


Keeping  the  DMZ  Safe 

A  security  manager  has  to  be  vigilant  about  what  goes  into 
the  network’s  exposed  portion,  and  how  it’s  ail  configured. 


WHEN  YOU’RE  IN  CHARGE 

of  a  company’s  security, 
you’d  better  be  on  the  ap¬ 
proval  list  for  resources 
placed  in  the  DMZ. 

The  DMZ  is  the  portion  of  a  network 
that  exposes  applications  and  infrastructure 
to  the  world.  Typically,  it  contains  things 
like  corporate  websites,  storefronts,  VPN 
concentrators  and  Outlook  Web  access. 

Before  I  came  to  this  company,  any 
server  placed  in  the  DMZ  had  to  be  avail¬ 
able  to  the  public  Internet.  Now,  that’s  a 
scary  requirement.  Since 
my  arrival,  I’ve  expanded 
the  criteria  considerably. 

Although  we  have 
no  storefront  and  only 
one  main  corporate 
website,  an  Nmap  scan  of  our  externally 
accessible  DMZ  resources  yielded  almost 
50  individual  items.  And  many  of  those 
resources  were  unknown,  unpatched  or 
lacking  in  even  basic  security  configura¬ 
tions.  That  sort  of  thing  is  great  ammuni¬ 
tion  when  I’m  criticized  for  my  in-depth 
interrogations  about  new  candidates  for 
the  DMZ  or  modifications  to  existing 
DMZ  infrastructure. 

In  sticking  with  my  No.  1  philosophy, 
most  of  my  questions  relate  to  the  rule  of 


least  privilege.  For  example,  I  almost  im¬ 
mediately  ask,  “What  will  this  resource 
be  used  for,  and  who  will  need  access?” 
One  time,  the  answer  to  the  question 
about  access  to  a  server  was,  “Just  two 
of  us.”  I  was  able  to  convince  them  that 
an  internal  development  network  was  a 
better  place  for  that  server. 

For  those  servers  that  do  make  it  into 
the  DMZ,  I  try  to  restrict  availability  to 
ports  80  (http)  and  443  (https).  Prior  to 
this  rule,  we  had  all  sorts  of  ports  open 
in  the  DMZ,  including  Remote  Desktop, 
which  is  probably  the 
top  method  for  unau¬ 
thorized  access.  I’ve 
also  created  a  secu¬ 
rity  baseline  using  data 
gleaned  from  various 
websites.  For  example,  the  Center  for  In¬ 
ternet  Security  has  some  decent  security 
configuration  documents  and  tools  for 
various  devices  and  operating  systems. 

All  DMZ  resources  must  be  managed, 
meaning  we  can  do  inventory  tracking, 
configuration  management,  security 
patching  and  so  on.  Of  the  50  DMZ 
resources  identified  in  my  last  audit,  only 
eight  were  managed. 

Next,  if  there’s  no  need  for  a  DMZ  re¬ 
source  to  communicate  with  a  back-end 


Trouble 

Ticket 


The  network 
DMZ  contains  too 
many  resources,  putting  the 
company  at  risk. 


Review 
every  resource  now 
in  the  DMZ,  and  set  policies 
that  avoid  future  problems. 


server  (aside  from  monitoring,  log  man¬ 
agement  and  general  administration), 
then  the  firewall  should  block  access. 

I  also  want  every  DMZ  resource  to  have 
an  identifiable  business  owner.  My  investi¬ 
gation  of  current  DMZ  resources  revealed 
that  more  than  15  servers  and  associated 
applications  had  no  identified  owner. 

I  also  require  that  certain  security,  ap¬ 
plication  and  event  logs  must  be  enabled 
for  all  DMZ  resources,  and  they  must  be 
configured  to  send  logs  to  our  security 
event  and  incident  management  tool. 

I  also  found  that  we  had  research  and 
development  DMZ  resources  (otherwise 
known  as  lab  machines)  comingled  with 
production  DMZ  resources.  I  imme¬ 
diately  had  the  network  team  create  a 
separate  virtual  LAN  and  protect  that 
segment  with  the  DMZ  firewall.  Lab 
resources  are  sometimes  considered 
the  Wild  West,  and  I  wanted  to  ensure 
that  there  were  strict  controls  protecting 
the  production  DMZ  as  well  as  the  inter¬ 
nal  network  from  the  lab  resources. 

The  challenge  here  is  that  sometimes 
a  lab  resource  needs  to  connect  to  a 
machine  on  the  internal  network  for 
business  reasons.  Each  case  has  to  be 
tackled  individually. 

My  next  task  is  to  take  these  and  other 
requirements  and  author  a  DMZ  policy. 
In  setting  up  policies,  I  have  to  take 
into  consideration  where  the  company 
sits  on  the  overall  security  spectrum.  I 
recognize  that  if  we  enabled  all  security 
settings,  resources  could  be  rendered 
unusable.  The  trick  is  to  strike  a  balance 
between  security  and  usability  based  on 
what’s  at  stake.  This  is  otherwise  known 
as  risk  management.  ♦ 

This  week’s  journal  is  written  by  a  real 
security  manager,  “Mathias  Thurman,” 
whose  name  and  employer  have  been  disguised 
for  obvious  reasons.  Contact  him  at  mathias_ 
thurman@yahoo.com. 


Before,  any  server  placed  in  the  DMZ  had  to  be  available 
to  the  public  Internet.  Now  that’s  a  scary  requirement. 


the  discussions  about 
security!  computerworld.com/ 
blogs/security 


26  COMPUTERWORLD  AUGUST  22,  2011 


More  and  More,  It’s  All  a 
Game  for  Today’s  Trainers 


Although  IT 
staffers  are 
often  veteran 
gamers,  they 
generally  lack 
the  knowledge 
necessary  to 
identify  a  good 
training  game. 


Bart  Perkins  is 

managing  partner 
at  Louisville,  Ky.- 
based  Leverage 
Partners,  which  helps 
organizations  invest 
well  in  IT.  Contact 
him  at  BartPerkins® 
LeveragePartners.com. 


F  YOUR  COMPANY  TAKES  TRAINING  SERIOUSLY,  it  might  want  to 
turn  it  into  a  game.  A  growing  number  of  organizations  are  starting 
to  use  video  games  designed  to  train  users  in  new  skills,  hoping  to  re¬ 
duce  training  time  while  improving  long-term  information  retention. 


There  are  pitfalls  at  this  stage,  since  training 
game  products  (and  many  of  the  companies  that 
produce  them)  are  relatively  new.  Supplier  sol¬ 
vency  could  be  an  issue.  And  although  IT  staffers 
are  often  veteran  gamers,  they  generally  lack  the 
knowledge  necessary  to  identify  a  good  training 
game.  At  a  minimum,  make  sure  a  proposed  train¬ 
ing  game  is  designed  to  do  the  following: 

Engage  players.  A  good  game  should  foster 
the  desire  to  play  again.  Boring  games  don’t  get 
played  often  enough  to  teach  the  material  they 
were  designed  to  deliver.  Producers  of  enter¬ 
tainment  games  recognize  the  importance  of 
player  engagement  and  use  recognition,  rewards 
and  other  techniques  to  entice  players  to  play 
repeatedly.  Business  games  must  contain  similar 
features.  Moreover,  training  games  must  be 
compelling  to  players  with  differing  skill  levels. 
Effective  games  must  offer  additional  challenges 
as  skill  levels  increase. 

Teach  job-related  skills.  Good  training  games 
provide  opportunities  to  develop  and  practice 
new  skills  (handling  a  call  center  request,  for 
example,  or  answering  product  questions).  The 
best  games  use  both  positive  and  negative  skill 
scenarios.  A  sales  game  might  demonstrate  a 
competent  salesperson  giving  complete  product 
information  to  a  customer  but  also  a  rude  sales¬ 
person  providing  superficial  or  wrong  answers. 
Practice  and  reinforcement  of  appropriate 
responses  help  players  move  information  from 
short-  to  long-term  memory. 

Monitor  progress.  Effective  games  provide  con¬ 
tinuous  feedback  to  players.  Game  metrics  should 
parallel  actual  job  metrics.  For  example,  metrics 


for  a  sales  training  game  might  include  units  sold, 
unit  price  and  number  of  new  customers.  Feed¬ 
back  boosts  engagement  and  simplifies  assessment 
of  progress.  Trainers  can  quickly  determine  when 
someone  has  not  grasped  important  concepts  and 
provide  timely  assistance. 

Deploy  and  update  quickly.  Choose  a  platform 
that  allows  rapid  modifications  as  skill-training 
requirements  change.  Training  games  must  be 
quickly  adaptable  to  changes  in  market  conditions. 

Limit  costs.  Since  training  games  address  real 
situations,  it’s  natural  to  want  realistic  visual  effects 
and  avatars,  but  those  features  can  be  prohibitively 
expensive.  For  the  next  several  years,  few  training 
games  (beyond  flight  simulators  and  military  war 
games)  can  justify  the  high  cost  of  extreme  realism. 
Stay  focused  on  substance,  not  form. 

Provide  accessible  interfaces.  Success  or  high 
scores  in  a  training  game  should  reflect  an  actual 
increase  in  skills.  Make  sure  the  user  interface  is 
not  heavily  dependent  on  previous  gaming  experi¬ 
ence,  or  you  may  assess  irrelevant  skills  —  and 
perhaps  leave  your  organization  open  to  litigation 
for  discriminating  in  favor  of  gamers. 

Choose  your  supplier  carefully.  Games 
produced  by  academically  oriented  companies 
may  convey  relevant  information  but  be  boring. 
Conversely,  games  produced  by  entertainment- 
oriented  companies  may  be  engaging  but  fail  to 
train  effectively.  Look  for  a  balanced  game  that 
blends  entertainment  and  education  and  that  also 
reflects  real-world  business  perspective  and  con¬ 
straints.  For  maximum  game  effectiveness,  make 
sure  relevant  business  units  approve  the  game’s 
effectiveness.  Then  let  the  games  begin!  ♦ 


COMPUTERWORLD.COM  27 


I  I  lit 


I  I  I  I 


,, 


]  I  i 


300  000  0  0000  0000  0000  000000080000808 

111?  13  R 15  55  ?1  K 13 10 

mmmu.  iinmiiimiimmuiiimm 


IIIH 


nnninni  m  nun.  nninnnnnn  | 

333333333333333333333  .  33333333333333 
*4- 44  4  *444  4444  44  44  44  4  44  4  4  44  4  4  4  4  4 
ml  5  5  5  5  5  5  5 .. 5  S  5  5..  5  5  5  5  5  5  5  5  5  5  5  5  5  5  5  S 

68066686660656860 


llll 


umj, 


- 


I  llll  llll  lint  Mmmu 


miminmuini  - 

*> 

8  8  8  8  8  8  8  8  8  8  8  8  8  0  8 


9999999999899988999999933893398 

64?««»3S5JM8  5*8  5e»»8aOMSS«e«#»»JH?T3K?SWnj!)J» 


E  YOU 
OBSOLETE? 


On  his  Computerworld.com  blog,  Glyn  Meek,  the  Geezer  Geek, 
offers  some  Jeff  Foxworthy-inspired  punch  lines  that  define 
“that  sad  moment  when  we  geezers  realize  we  no  longer  are 
the  hot  technologists  on  the  block.”  Here  are  some  highlights: 


YOU  SLIGHT  BE  -A 
HAS-BEEN  IF  . . . 

You  don't  have  ANY  of 
the  skids  for  job  postings 
on  Monster.com. 

You  still  keep  a  few  blank 
punch  cards  around  in 
case  of  an  emergency. 

You  remember  “IBM 
and  the  seven  dwarfs” 
and  can  name  at  least 
three  of  the  dwarfs. 


You  used  to  work  for 
one  of  the  dwarfs! 


You  think  a  ceil  phone 
is  really  for  making 


'is*  u  .. 

phone  call 


»  Pieces  of  paper  that  are 
14  in.  by  11  in.,  have  a  row 
of  holes  down  each  side, 
and  have  alternating 
Sight-green  and  white 
stripes  can  bring  a  tear  to 
your  eys. 


ASK  A  PREMIER  100  IT  LEADER 


O’Berry 

The  self-described 

“reformed 

CxO/CIO”  answers  questions 
about  the  need  for  the  CIO  to  be 
part  of  the  team  and  more. 


Our  CIO  is  always  stressing  how  important  it  is  that  we, 
his  direct  reports,  work  together  as  a  team,  but  he  doesn’t 
act  like  he’s  part  of  the  team  himself.  There  are  a  lot  of 
us,  but  he  doesn’t  even  know  all  our  names,  and  he  seems 
more  interested  in  hobnobbing  with  other  C-level  officers. 

I  see  the  value  of  those  relationships,  but  am  I  wrong  to 
expect  him  to  display  a  bit  more  solidarity  with  his  direct 
reports?  I  can  see  right  out  the  gate  that  your  question  is  not 
going  to  have  me  making  friends  with  the  C  suite.  The  unfortu¬ 
nate  truth  is  that  leaders  are 
often  born,  not  made.  I  would 
tend  to  believe  your  current 
CIO  falls  into  the  "tried  to  make 
a  leader  and  did  not  succeed” 
category.  The  team  comes 
first,  period.  If  you  truly  care 
as  a  leader,  then  it  shows,  and 
it  directly  shows  in  the  ac¬ 
complishments  of  your  team. 

Otherwise,  you  are  just  looked  at  as  someone  using  others  to  get 
to  the  next  rung  in  the  ladder.  “Do  as  I  say,  not  as  I  do”  is  a  hypo¬ 
critical  recipe  for  disaster,  especially  when  “teamwork”  concepts 
are  thrown  around.  Trust  matters,  and  he  needs  to  earn  it,  or  he 
will  never  be  anything  but  a  placeholder  for  the  next  person.  I 
always  say,  “I  will  be  led;  I  will  not  be  herded.”  If  I  feel  that  way, 
why  would  I  ever  expect  anyone  who  worked  for  me  to  feel  dif¬ 
ferently?  Your  CIO  needs  to  wake  up  or  change  careers  to  some¬ 
thing  that  he  can  do  by  himself  instead  of  with  a  team. 


If  you  have  a  question 
for  one  of  our  Premier 
100  IT  Leaders,  send 

it  to  askaleaderg) 
computerworScf.com, 

and  watch  for  this 
column  each  month. 


I  was  laid  off  from  my  job  as  a  project  manager  about  five 
months  ago.  I’ve  had  a  few  interviews,  but  I  haven’t  been 
enthusiastic  about  the  jobs.  They  seem  to  offer  only  more 
of  what  I’ve  already  done.  My  wife  says  this  is  no  time  to  be 
fussy,  and  I  understand  her  point,  but  I  want  to  give  this 
more  time  and  try  to  find  something  with  broader  horizons. 
Would  I  be  better  off  accepting  a  job  now  and  closing  off 
this  gap  on  my  resume,  or  should  I  hold  out  a  bit  longer? 
Tough  call.  It  will  depend  on  the  length  of  time  the  gap  is  and 
what  you  are  doing  to  fill  it.  For  instance,  if  you  have  legitimate 
work,  even  for  a  nonprofit  or  as  an  independent  consultant,  then 
you  can  maybe  wait  a  bit  longer.  At  the  same  time,  perfection  is 
the  enemy  of  progress,  and  though  your  age  and  financial  state 
are  factors,  it  is  probably  better  to  dose  the  gap.  At  the  same 
time,  use  your  known  skills  and  abilities  to  add  more  to  whatever 
organization  you  join.  If  you  don’t  go  in  assuming  it’s  a  dead  end,  a 
path  may  open  up  to  something  you  never  considered. 


28  COMPUTERWORLD  AUGUST  22.  2011 


MARKETPLACE 


r 


Desktop  with  Spider 


Network  with  Spider 
Publish  (portable  media) 
Web  with  Spider 


The  Smart  Choke  for 
Text  Retrieval®  since  1991 


Instantly  Search  Terabytes  of  Text 


>1 


Highlights  hits  in  a  wide  range  of  data,  using  dtSearch's 
own  file  parsers  and  converters 

•  Supports  MS  Office  through  2010  (Word,  Excel,  PowerPoint, 
Access),  OpenOffice,  ZIP,  HTML,  XML/XSL,  PDF  and  more 

•  Supports  Exchange,  Outlook,  Thunderbird  and  other 
popular  email  types,  including  nested  and  ZIP  attachments 

•  Spider  supports  static  and  dynamic  web  data  like  ASP.NET, 
MS  SharePoint,  CMS,  PHP,  etc. 

•  API  for  SQL-type  data,  including  BLOB  data 


With  dtSearch:  "Endless 
indexing  is  now  a  breeze" 

Computerworld 

"Impressive  searching 
power ...  handles  more 
than  a  terabyte  of  text  in 
a  single  index" 

Network  World 


Engine  for  Win  &  .NET 
Engine  for  Linux 


25+  full-text  and  fielded  data  search  options 

•  Federated  searching 

•  Special  forensics  search  options 


"Lightning  fast ... 
performance  was 
unmatched  by  any  other 
product" 

Redmond  Magazine 


Ask  about 

fully-functional 

evaluations! 


•  Advanced  data  classification  objects 

APIs  for  C++,  Java  and  .NET  through  4.x 

•  Native  64-bit  and  32-bit  Win  /  Linux  APIs;  .NET  Spider  API 

•  Content  extraction  only  licenses  available 


For  hundreds  more 
reviews  and  developer 
case  studies,  see 
www.dtSearch.com 


www.dtSearch.com  •  i-soo-it-finds 

v _  J 


COMPUTERWORLO.COM 


Personalized  IT  newsletters 
from  Tech  Dispenser. 

You  pick  the  topics.  You  pick  the  sources.  You  pick  the  frequency. 

Build  your  own  newsletter  featuring  your  favorite  technology 
topics  —  cloud  computing,  application  development,  security  — 
over  200  timely  topics,  from  more  than  700  trusted  sources. 


Get  started  today.  It's  free. 
www.techdispenser.com 


.  0- :  ■••••  .  'V 

TECH  ©DISPENSER 

■  ■  .  -xrim# 

Disturbingly  personal  newsletters 

■ 


careers 


Accenture  LLP  seeks  a  Process 
Lead  -  OTC/SAP  SD  in  St. 
Joseph.  Ml  to  perform  the  follow¬ 
ing  responsibilities:  propose  & 
implementing  improvements  to 
work  products,  services,  &  proc¬ 
esses  &  will  work  with  the  busi¬ 
ness  team  to  improve  project 
workflow;  apply  an  understanding 
of  the  client's  business  process  & 
system  direction  to  develop 
appropriate  solutions;  improve 
the  performance  of  client  tools  & 
applications  by  applying 
advanced  analytical,  mathemati¬ 
cal,  &  SAP  skills;  develop  custom 
tools  in  SAP  using  SD,  MM,  LE, 
CRM,  BW,  Portal,  & 
WebServices;  develop  custom 
tools  in  SAP  using  ABAP  skills; 
search  for  OSS  notes  &  work 
with  offshore  teams  to  apply 
them;  work  with  off-shore  support 
teams,  as  well  as  on-site  client 
teams,  to  ensure  SAP  issues  are 
properly  resolved  &  tested; 
establish  internal  &  client  rela¬ 
tionships  &  maintain  communi¬ 
cation  to  faciliate  project  goals; 
promptly  attending  to  various  cli¬ 
ent  requests,  meetings.  &  esca¬ 
lations  in  an  effort  to  increase  cli¬ 
ent  user  satisfaction;  perform  a 
daily  follow-up  on  all  open  issues 
to  ensure  a  positive  user  exp.  for 
the  client;  provide  technical 
assistance  to  ensure  that  the  pro¬ 
ject  team  meets  all  contract  SLA 
Targets  for  Break/Fix,  Service 
Requests  &  Enhancements; 
ensure  high  resource  utilization 
by  making  sure  the  priority  break/ 
fix  &  enhancements  are  set  & 
worked  properly;  train  new  team 
members  on  these  applications  & 
perform  the  knowledge  transfer 
to  improve  their  skills;  participate 
in  IS  technical  reviews,  attend 
ISD  tollgate  reviews  as  part  of 
the  service  introduction  process, 
&  participate  in  high  impact 
reviews  to  understand  all 
changes  impacting  the  produc¬ 
tion  environment.  May  supervise 
a  small  team  of  employees.  The 
min.  requirements  are: 
Bachelor's  degree,  or  foreign 
equiv.,  in  Comp.  Sci.,  Comp. 
Eng'g,  Info.  Sys./Tech., 
Mechanical  Eng'g,  Electrical 
Engi'g,  Electronics  Eng'g,  or  a 
related  degree  with  specialized 
course  work  in  math,  program¬ 
ming,  comp,  sci./eng'g  or  info, 
sys./tech.,  +  5  years  of  progres¬ 
sively  responsible,  post-bac- 
calaureate  exp.  as  a  Sr. 
Programmer  Analyst,  as  an  SAP 
Support  Analyst,  or  in  a  closely 
related  position,  including  profes¬ 
sional  exp.  with  the  following 
skills:  Utilize  ABAP.  RICEF/W, 
SAP  SD/OT  CP/MM/CRM/BI/ 
NetWeaver  to  analyze,  develop  & 
configure  system  design;  pro¬ 
gram  in  ABAP  &  debug  existing 
ABAP  code  to  troubleshoot  sys¬ 
tem  outages;  provide  client  sup¬ 
port  to  resolve  production  issues 
within  agreed  upon  timeframe, 
work  directly  with  business,  off¬ 
shore  teams,  external  software 
vendors  &  other  consulting  serv¬ 
ice  providers  Apply  on  line  at 
www.accenture.com  [Select 
Careers.  United  States;  St. 
Joseph.  Ml;  Job  #00127926], 


SAP  CRM  Application  Specialist: 
(Charlotte.  NC):  Resp  for  imple¬ 
menting  SAP  CRM  7  Sales,  IPC 
(Internet  Pricing  &  Configuration) 
&  Vertex  for  the  Builder  Business 
in  North  America.  Will  provide 
functional  leadership  in  all  areas 
of  the  Electrolux  SAP  CRM  Sales 
including  Pricing  &  Taxes.  Rqmts: 
Master’s  degree  in  Engg,  Comp 
Sci,  Sciences  or  a  rel  field.  1  yr  of 
exp  in  job  offered  or  rel  occu¬ 
pation  which  must  include  exp  in 
the  configuration,  delivery,  &  sup¬ 
port  of  SAP  CRM  processes  & 
exp  in  implementations  with  SAP 
CRM  5.0  &  later  versions.  Exp 
must  include  SAP  CRM  Sales, 
IPC  (Internet  Pricing  & 
Configuration)  &  Vertex 
Integration.  Duties  entail  work 
with  SAP  CRM  Web  Channel; 
SAP  CRM  Marketing;  &  SAP 
CRM  Service.  We  offer  competi¬ 
tive  salaries  &  benefits.  Please 
email  or  fax  resumes  to  Attn: 
Beverly  Fisher,  Fax:  (216)  898- 
2340.  Email: 

beverly.fisher@electrolux.com. 
Please  reference:  SAP  CRM 
SALES 


With  100+  branch  offices 
located  across  the  US,  Experis 
US,  Inc.,  is  actively  recruiting 
for  the  following  positions: 
Software  Testing  Automation 
Engineer  -  metro  Orlando,  FL  - 
Code  #OR100 

Programmer  Analyst  -  metro 
Jersey  City,  NJ  -  Code  #JC140 
Mainframe  Programmer  -  metro 
Minneapolis,  MN  -  Code 
#MI200 

Software  Development 

Engineer  in  Test  -  metro 
Redmond,  WA-  Code  #RE120 
Systems  &  Capacity 
Performance  Engineer  -  metro 
Vienna,  VA- Code  #V1 100 
SAP  Technical  Architect  Lead  - 
metro  Washington,  D.C.  -  Code 
#WA330 

Please  refer  to  appropriate  job 
code(s)  when  submitting 
resume  to:  Experis  US,  Inc., 
Attn.  Robin  Block,  100 
Manpower  Place,  Milwaukee, 
Wl  53212.  EOE/MF/DV. 


IT  Professionals  needed  for 
established  worldwide  firm. 
Specific  needs  for  Programmer 
Analysts,  Software  Engineers, 
IT  Project  Managers. 
Programmer  Analyst  and 
Software  Engineer  positions 
require  BS  in  Engg.  or  CS  and 
relevant  industry  experience.  IT 
Project  Manager  positions 
require  MS  degree  in  relevant 
field  and  relevant  industry  expe- 
nence  Will  consider  applicants 
with  BS  degree  and  significant 
industry  experience.  Positions 
located  out  of  company's  New 
York,  NY  headquarters  and  sub¬ 
ject  to  relocation  throughout  the 
US.  Send  resumes  to- 
MajescoMastek.  5  Penn  Plaza, 
New  York,  NY  10001,  Attn:  HR/ 
Karen  Fernandes. 


SAP  CRM  Application  Specialist: 
(Charlotte,  NC):  Resp  for  imple¬ 
menting  SAP  CRM  7.0  Call 
Center  &  Customer  Service 
Mgmt  in  North  America.  Will  pro¬ 
vide  functional  leadership  in  all 
areas  of  the  Electrolux  SAP  CRM 
call  center  &  service,  Marketing  & 
Sales  management  area.  SAP 
CRM  Web-UI/IC-WEB  & 
Middleware  exp  is  reqd.  Reqmts: 
Master's  degree  in  Bus  Mgmt, 
Comp  Sci,  Engg,  Sci  or  a  rel 
field.  3  yr  of  exp  in  job  offered 
or  rel  occupation  which  must 
include  exp  in  the  configuration, 
delivery,  &  support  of  SAP  CRM 
processes  &  experience  in  imple¬ 
mentations  with  SAP  CRM  7.0. 
Exp  must  include  SAP  Interaction 
Center  &  SAP  CRM  Customer 
Service  &  Support.  Duties  entail 
work  w /  SAP  CRM  Web  Channel; 
SAP  CRM  Marketing;  &  SAP 
CRM  Sales  Marketing  &  Sales 
mgmt  area.  SAP  CRM  Web-UI / 
IC-WEB  &  Middleware  exp  is 
reqd.  Please  email  or  fax 
resumes  to  Attn:  Beverly  Fisher, 
Fax:  (216)  898-2340.  Email: 
beverly.fisher@eiectrolux.com. 
Please  reference  SAP  CRM 
SERVICE 


Brocade  Communications 
Systems,  Inc.  has  the  following 
opportunities  (various  levels) 
available  in  Broomfield,  CO: 

Software  Engineer 

Test  Engineer 

Test  Engineering  Associate 

Technical  Support  Engineering 

Associate 

Specific  requirements  apply.  All 
of  these  positions  will  involve  the 
use  of  Brocade's  reliable,  high- 
performance  Information 

Technology  network  infrastruc¬ 
ture  solutions  that  help  the 
world's  leading  organizations 
transition  smoothly  to  a  virtual¬ 
ized  world  where  applications 
and  information  reside  anywhere. 
Brocade  provides  data  center 
expertise  across  the  entire  net¬ 
work  with  future-proofed  solu¬ 
tions  built  for  consolidation,  net¬ 
work  convergence,  virtualization, 
and  cloud  computing.  Mail  your 
resume  referencing  job  title  to 
Sunday  Ad,  130  Holger  Way,  San 
Jose,  CA  951 34.  EOE. 


Sr.  Programmer  Analysts  in  East 
Windsor,  NJ  area.  Estimate  the 
application  scalability  &  cost 
effectiveness,  validate  &  coor¬ 
dinate  business  process,  &  con¬ 
duct  research  to  understand  the 
latest  technological  advance¬ 
ments.  Direct,  coordinate  & 
manage  daily  operations,  ana¬ 
lyze  workflow,  establish  work  pri¬ 
orities,  develop  standards  &  set 
deadlines  for  various  projects. 
Work  w /  technologies  such  as 
oracle  weblogic  portal,  apache 
camel,  apache  beehive,  netui, 
j2ee,  java,  jsp,  servlets.  Travel/ 
reloc  as  req.  Send  res.  to 
Hermes  Technologies,  Inc., 
379  Princeton  Hightstown  Rd., 
East  Windsor,  NJ  08512 


Quantros,  Inc.  has  openings  for 
Engineering  Development 
Manager  at  its  office  in  Milpitas, 
CA.  Plan  and  coordinate  tech¬ 
nical  activities  to  develop  and 
deliver  Business  systems  solu¬ 
tions  to  meet  business  objec¬ 
tives  and  ongoing  operations. 
Travel/relocation  required.  Must 
have  Master's  or  foreign 
equivalent  plus  2  yrs  of  exp  or 
Bachelor's  or  foreign  equivalent 
+  5yrs  exp.  Email  resume  to: 
jobs@quantros.com 


Computers  -  Beta  Soft 
Systems,  Inc.  seeks  Senior 
Software  Test  Engineer  in 
Fremont,  CA  &  any  other  unan¬ 
ticipated  locations  in  US.  Write 
test  case,  test  conditions,  test 
scenarios,  test  script,  test  clo¬ 
sure  documentation,  and  test 
plan.  Work  on  Oracle,  SAP, 
Adobe  and  front  end  testing. 
Req's:  MS  (or  equiv.)  &  3  yrs 
exp.  or  BS  (or  equiv.)  &  5  yrs 
exp.  in  field  of  software  engi¬ 
neering.  Must  be  willing  to 
travel  &/or  relocate  to  various 
places  in  US  for  the  position. 
Email  resume  w/ref.  to 
HR@betasoftsystems.com  for 
position  Req  #4(cw). 


Quality  Assurance  Analyst: 
HumanConcepts  LLC  in 
Sausalito,  CA.  Develop  QA 
test  plans  on  multiple  plat¬ 
forms.  Master  degree 
required  Mail  resume  to  3 
Harbor  Drive,  #200,  Sausalito, 
CA  94965  or  email: 
penny.  morlan@ 
humanconcepts.com 


ATTENTION... 

Law  Firms 
IT  Consultants 
Staffing  Agencies 

Are  you  frequently  placing  legal 
or  immigration  advertisements? 

Place  your 

Labor  Certification  Ads  here! 


For  more  information  contact  us  at: 


800.762.2977 

iTcareers 


30  COMPUTERWORLD  AUGUST  22.  2011 


SHARK!/'  NK 

TRUE  TALES  OF  IT  LIFE  AS  TOLD  TO  SHARKY  LLLILLILLLLLLILLLLILLLLLLLLLLLLILLLLLLL 


ing  with  user  management  and 
lay  out  the  objectives  and  scope  of 
the  project  and  engage  in  some 
discussion.  He’d  then  say, 
‘This  will  take  six 
months  and  cost 
$1  million.’  He 
would  then  sneak 
a  peek  around 
the  room  and, 
if  no  one  had 
fallen  off  his 
chair,  he’d 
quickly  add,  ‘for 
Phase  One.’  ” 

Critical, 
Redefined 

Support  pilot  fish 
gets  a  call  from  a 
user:  ‘‘My  applica¬ 
tion  won’t  run  under 
the  new  operating- 
system  version  that  you 
just  released.  It’s  a  critical 
application.  Can  you  get  it  to  work?” 
OK,  says  fish,  I’ll  take  a  look.  And  with 
the  code  in  hand,  he  starts  trying  to 
get  the  application  working.  But  after 
trying  every  reasonable  combina¬ 
tion  of  configurations  and  settings 
he  can  think  of,  fish  has  to  conclude 
the  user  is  right:  This  app  just  won’t 
run.  He  calls  user  back  and  explains 
that  something  must  have  happened 
between  the  new  version  of  the  OS 
and  the  old  one,  and  he  promises  to 
test  the  app  with  the  old  version  to 
see  if  he  can  tell  what  changed.  User: 
“Oh,  that’s  OK.  The  app  didn’t  work 
with  the  old  OS  version,  either.  I  was 
hoping  you  could  get  it  to  work  with 
the  new  version." 


»  New  or  old,  Sharky  wants  your 
true  tale  of  IT  life.  Send  it  to  me  at 
sharky@computerworld.com.  You’ll 
score  a  sharp  Shark  shirt  if  l  use  it. 


That  Would  Do  It 


Support  pilot  fish  gets  an  e-mail  from  an  associate:  My  BlackBerry  has  gone  kaput! 
The  ear  speaker  stopped  working.  I  can  only  use  it  in  external  speaker  mode.  Who 
do  I  need  to  arm-twist  to  get  it  replaced?  Fish  sends  a  reply  instructing  the  user 
to  power  off  his  phone,  pull  the  battery,  hold  the  power  button  down  to  drain  any 
residual  power  in  the  unit,  then  replace  the  battery,  turn  it  on,  and  call  back  if  it  still 
doesn’t  work.  Then  fish  gets  an  instant  message:  /  figured  it  out.  Followed  by  a  phone 
call:  “Do  you  want  to  know  what  the  problem  was?”  Sure,  says  fish,  figuring  the 


user  got  it  wet  or  something.  “I  was 
at  Starbucks,  and  l  was  sitting  very 
near  my  car,  which  had  my  Bluetooth 
headset  in  it  -  turned  on  and  still 
paired  and  connected  to  my  phone.” 

There’s  No  School 
Like  Old-School 

Flash  back  about  30  years  to  when 
this  pilot  fish  is  working  for  a  ma¬ 


jor  retailer  -  and  his  boss  has  an 
amazingly  good  record  of  bringing 
projects  in  on  time  and  on  budget. 
“Those  were  the  days  before  we  had 
all  the  fancy  metrics  and  project 
planning  tools  that  are  available 
today.  So  one  day  I  asked  him  to 
enlighten  me  on  his  technique  for  ac¬ 
curate  project  estimating,”  says  fish. 
“He  said  he  would  go  into  the  meet¬ 


ijifU 


CHECK  OUT  Sharky’s  blog,  browse  the  Sharkives  and  sign  up  for  home  delivery  at  computerworld.com/sharky. 


ADVERTISERS’ INDEX 

This  index  is  provided  as  an 
additional  service.  The  publisher 
does  not  assume  any  liability  for 
errors  or  omissions. 

Bl  &  Analytics 
Perspectives . 25 

biperspectives.com/magazine 

CenturyLink  . C3 

centurylink-business.com 

CommVault . C2-1 

achieveoneness.com 

Digital  Spotlight 
on  Converged 
Infrastructure . 19 

www.computerworld.com/s/ 

pages/digital.ci 

dtSearch  .  29 

dtsearch.com 

IBM  Intel . 2 

ibm.com/systems/consolidate 

IBM  Non-Intel . C4 

ibm.com/facts 

Microsoft 

Market  Pulse  . 9 

www.computerworld.com/ 

whitepapers/ 

MicrosoftMarketPulse 

Verisign  . 22, 23 

verisigninc.com/connect 


✓^BPA 

^  w  ft  t  I  n  k /  i  ft  f 


Periodical 
postage 

W0A18KI0*" 

mi«s5  paid  at 
Framingham,  Mass.,  and 
other  mailing  offices.  Posted 
under  Canadian  International 
Publication  agreement 


PM40063731.  CANADIAN 
POSTMASTER:  Please  return 
undeliverable  copy  to  PO  Box 
1632,  Windsor,  Ontario  N9A 
7C9.  Computerworld  (ISSN 
0010-4841)  is  published 
twice  monthly  except 
for  the  month  of  July  by 
Computerworld  Inc.,  492 
Old  Connecticut  Path,  Box 
9171,  Framingham,  Mass. 
01701-9171.  Copyright 
2011  by  Computerworld 
Inc.  All  rights  reserved. 
Computerworld  can  be 
purchased  on  microfilm 
and  microfiche  through 
University  Microfilms 
Inc.,  300  N.Zeeb  Road, 

Ann  Arbor,  Mich.  48106. 
Computerworld  is  indexed. 
Back  issues,  if  available, 
may  be  purchased  from  the 
circulation  department. 
Photocopy  rights:  permission 
to  photocopy  for  internal 
or  personal  use  is  granted 
by  Computerworld  Inc. 
for  libraries  and  other 
users  registered  with  the 
Copyright  Clearance  Center 
(CCC),  provided  that  the 
base  fee  of  $ 3  per  copy  of 
the  article,  plus  50  cents 
per  page,  is  paid  directly  to 
Copyright  Clearance  Center, 
27  Congress  St.,  Salem, 

Mass.  01970.  Reprints 
(minimum  500  copies)  and 
permission  to  reprint  may 
be  purchased  from  The  YGS 
Group,  (800)  290-5460,  Ext. 
100.  Email:  computerworld® 
theygsgroup.com.  Requests 
for  missing  issues  will  be 
honored  only  if  received 
within  60  days  of  issue  date. 
Subscription  rates:  $5  per 
copy:  Annual  subscription 
rates:  -  $129;  Canada  - 
$129;  Central  &  so.  America 
-  $250;  Europe  -  $295; 
all  other  countries  -  $295; 
digital  subscription  - 
$29.  Subscriptions  cali 
toll-free  (888)  559-7327. 
POSTMASTER;  Send  Form 
3579  (Change  of  Address) 
to  Computerworld.  PO 
Box  3500,  Northbrook,  III. 
60065-3500. 


COMPUTERWORLD.COM  31 


OPINION 


This  Is  No  Time 
To  Skimp  on  Security 


One  fundamental 
change  is  that 
the  motives  for 
security  breaches 
have  multiplied. 


Scot  Finnie  is 

Computerworld’s 
editor  in  chief. 
You  can  contact 
him  at  sfinnie® 
computerworld.com 
and  follow  him  on 
Twitter  (@ScotFinnie). 


HAVE  YOU  BEEN  PAYING  ATTENTION?  Security  threats  around  the 
world  have  changed  over  the  past  few  years.  One  of  the  fundamental 
differences  is  that  the  motives  for  security  breaches  have  multiplied. 
Where  once  they  were  almost  entirely  a  criminal  means  of 


monetary  gain,  today  they  are  also  driven  by  inter¬ 
national  tensions,  ideological  vigilantism  and  the 
desire  to  embarrass  organizations  and  governments 

—  with  individuals,  groups  and  even  countries 
using  electronic  means  as  a  form  of  aggression. 

Who  knows  what  groups  like  Anonymous, 
AntiSec  and  LulzSec  will  target  next?  Who  knows 
what  other  countries  or  nationally  focused  groups 
might  target  U.S.  interests  —  public  or  private 

—  using  cyber  sabotage  and  warfare  techniques, 
such  as  those  reportedly  set  in  motion  by  Stuxnet. 

Recent  examples  of  companies,  organizations 
and  websites  that  have  been  hacked  include  Booz 
Allen  Hamilton,  the  CIA,  Citigroup,  Epsilon, 
Google,  Honda,  the  IMF,  Lockheed  Martin, 
NASA’s  Jet  Propulsion  Laboratory,  NASDAQ,  PBS, 
the  Pentagon,  RIM’s  BlackBerry  blog,  RSA,  Sony 
and  the  U.S.  Senate. 

On  Aug.  2,  security  vendor  McAfee  released 
a  white  paper  in  which  threat  researcher  Dmitri 
Alperovitch  chronicled  a  hacking  campaign 
dubbed  Operation  Shady  RAT  that  penetrated  72 
organizations  in  14  countries  over  the  past  five 
years.  Alperovitch  wrote:  “I  am  convinced  that 
every  company  in  every  conceivable  industry  with 
significant  size  and  valuable  intellectual  property 
and  trade  secrets  has  been  compromised  (or  will 
be  shortly),  with  the  great  majority  of  the  victims 
rarely  discovering  the  intrusion  or  its  impact.” 

McAfee  competitors  Kaspersky  and  Symantec 
criticized  the  report  for  implying  that  the  Shady 
RAT  hackers  had  done  something  sophisticated  and 
out  of  the  ordinary.  While  that  suggests  that  secu¬ 
rity  vendors  are  more  concerned  with  outdoing  one 


another  than  with  showing  how  their  systems  can 
protect  enterprises,  no  one  is  disputing  that  long¬ 
term  hacking  not  only  exists  but  is  commonplace. 

An  Aug.  5  Computerworld  story  by  Gregg  Keizer 
(“Shady  RAT  Hacking  Claims  Overblown,  Say 
Security  Firms”)  quoted  Symantec  researcher 
Hon  Lau:  “While  [the  Shady  RAT]  attack  is  indeed 
significant,  it  is  one  of  many  similar  attacks  taking 
place  daily.  Even  as  we  speak,  there  are  other 
malware  groups  targeting  many  other  organiza¬ 
tions  in  a  similar  manner.” 

Still  not  convinced  that  your  company  is  sur¬ 
rounded  by  a  rising  tide  of  security  threats?  In  its 
May  2011  report  on  worldwide  and  U.S.  security, 

I  DC  said  that  enterprises  “already  know  that  anti¬ 
virus  tools  don’t  work  against  advanced  persistent 
threats  (APTs)  and  other  malicious  threats  and  that 
they  are  vulnerable  to  becoming  part  of  the  70% 
of  organizations  that  have  been  breached  in  some 
way. . . .  The  changing  and  persistent  nature  of 
those  with  malicious  intent  makes  it  very  challeng¬ 
ing  to  stay  ahead  of  security  threat  management.” 

IT  organizations  need  to  rethink  their  security 
protections,  and  especially  their  assumptions 
about  who  and  where  threats  come  from  and  what 
may  be  motivating  them.  Five-year-old  assump¬ 
tions  could  easily  get  a  company  into  trouble. 

As  if  all  that  were  not  enough  to  contend  with,  IT 
budgets  are  tight  at  many  companies.  Here,  then, 
are  two  considerations  to  keep  in  mind  as  you  head 
into  budget  season:  First  is  the  question  of  how 
much  a  security  breach  would  cost  your  company. 
Second  is  the  fact  that  seven  out  of  10  companies 
have  already  experienced  a  security  breach.  ♦ 


32  COMPUTERWORLD  AUGUST  22.  2011 


Delivering  a  stronger  network 
And  more  personal  service. 


Our  network  has  expanded,  and  so  has  our  ability  to  serve 
you.  When  you  combine  our  personal,  consultative  approach 
with  our  premiere  technology  platform -including  colocation 
managed  hosting  and  nationwide  fiber-optic  network  with 


global  reach  -  you  will  find  you  are  free  to  drive  productivity 
and  bottom-line  growth.  Your  link  to  what's  next. 


Data 


Voice 


Managed  Services 


west 


BUSINESS 


\ 

^  $  Century  Link 

Business 


See  the  benefits  of  partnering 
with  us  at  centuryiink-business.com 


Qwest  is  now  CenturyLink. 


Virtualize 

more  with 

WebSphere. 


Over  400  highly  logical  reasons  to  choose  IBM  WebSphere  over  Oracle  WebLogic : 

1.  Save  57%  on  first-year  licensing  and  support. 

2.  Choose  from  more  virtualization  options  (including  VMware  and  Xen). 

3.  Pay  only  for  cores  you  use  (not  always  true  with  Oracle  WebLogic). 

4-404.  Be  in  good  company  (last  year,  over  400  Oracle  WebLogic  clients 
chose  IBM  WebSphere). 

ibm.com/facts 


SAVINGS  based  on  publicly  available  information  as  ol  6/13/2011  comparing  Oracle  WebLogic  Server  Enterprise  Edition  to  IBM  WebSphere  Application  Server  Network  Deployment,  both  on  an  IBM  Powei  730  Express 
server  (2  chips. 8  cores  each).  IBM. the  IBM  toga  fomcom, WebSphere. Smarter  Planet  and  the  planet  icon  are  trademarks  ot  International  Business  Machines  Corp,  registered  iri  many  lurisdictions  worldwide.  Other  product 
and  service  names  ought  be  trademarks  ol  IBM  or  other  companies.  A  current  list  ol  IBM  trademarks  is  available  on  die  Web  at  wwwibmcom/legal/copytfad&sbtml.  ©  International  Business  Machines  Corporation  2011. 


